Количество 14
Количество 14
BDU:2020-01021
Уязвимость команды printenv сервера приложений Apache Tomcat, позволяющая нарушителю осуществить межсайтовую сценарную атаку
CVE-2019-0221
The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a production website.
CVE-2019-0221
The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a production website.
CVE-2019-0221
The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a production website.
CVE-2019-0221
The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 ...
GHSA-jjpq-gp5q-8q6w
Cross-site scripting in Apache Tomcat
openSUSE-SU-2019:1808-1
Security update for tomcat
openSUSE-SU-2019:1673-1
Security update for tomcat
SUSE-SU-2019:1895-1
Security update for tomcat
SUSE-SU-2019:1693-1
Security update for tomcat
SUSE-SU-2020:14375-1
Security update for tomcat6
SUSE-SU-2019:1866-1
Security update for tomcat
SUSE-SU-2020:1498-1
Security update for tomcat
SUSE-SU-2020:1497-1
Security update for tomcat
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2020-01021 Уязвимость команды printenv сервера приложений Apache Tomcat, позволяющая нарушителю осуществить межсайтовую сценарную атаку | CVSS3: 6.1 | 13% Средний | больше 6 лет назад |
 | CVE-2019-0221 The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a production website. | CVSS3: 6.1 | 13% Средний | больше 6 лет назад |
 | CVE-2019-0221 The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a production website. | CVSS3: 5 | 13% Средний | больше 6 лет назад |
 | CVE-2019-0221 The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a production website. | CVSS3: 6.1 | 13% Средний | больше 6 лет назад |
| CVE-2019-0221 The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 ... | CVSS3: 6.1 | 13% Средний | больше 6 лет назад |
| GHSA-jjpq-gp5q-8q6w Cross-site scripting in Apache Tomcat | CVSS3: 6.1 | 13% Средний | больше 6 лет назад |
 | openSUSE-SU-2019:1808-1 Security update for tomcat | больше 6 лет назад | ||
| openSUSE-SU-2019:1673-1 Security update for tomcat | больше 6 лет назад | ||
| SUSE-SU-2019:1895-1 Security update for tomcat | больше 6 лет назад | ||
| SUSE-SU-2019:1693-1 Security update for tomcat | больше 6 лет назад | ||
| SUSE-SU-2020:14375-1 Security update for tomcat6 | больше 5 лет назад | ||
| SUSE-SU-2019:1866-1 Security update for tomcat | больше 6 лет назад | ||
| SUSE-SU-2020:1498-1 Security update for tomcat | больше 5 лет назад | ||
| SUSE-SU-2020:1497-1 Security update for tomcat | больше 5 лет назад |
Уязвимостей на страницу