exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 11

ELSA-2007-0569

почти 18 лет назад

ELSA-2007-0569: Moderate: tomcat security update (MODERATE)

EPSS: Низкий

CVE-2007-2450

около 18 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager and (2) Host Manager web applications in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote authenticated users to inject arbitrary web script or HTML via a parameter name to manager/html/upload, and other unspecified vectors.

CVSS2: 3.5

EPSS: Низкий

CVE-2007-2450

около 18 лет назад

EPSS: Низкий

CVE-2007-2450

около 18 лет назад

CVSS2: 3.5

EPSS: Низкий

CVE-2007-2450

около 18 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager ...

CVSS2: 3.5

EPSS: Низкий

CVE-2007-2449

около 18 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.

CVSS2: 4.3

EPSS: Высокий

CVE-2007-2449

около 18 лет назад

EPSS: Высокий

CVE-2007-2449

около 18 лет назад

CVSS2: 4.3

EPSS: Высокий

CVE-2007-2449

около 18 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in certain JSP fil ...

CVSS2: 4.3

EPSS: Высокий

GHSA-hc39-rjwp-qffq

около 3 лет назад

Apache Tomcat XSS Vulnerabilities in Examples Web Application

EPSS: Высокий

GHSA-5c5p-jxvx-x7j2

около 3 лет назад

Apache Tomcat vulnerable to Cross-site Scripting

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
ELSA-2007-0569 ELSA-2007-0569: Moderate: tomcat security update (MODERATE)			почти 18 лет назад
CVE-2007-2450 Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager and (2) Host Manager web applications in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote authenticated users to inject arbitrary web script or HTML via a parameter name to manager/html/upload, and other unspecified vectors.	CVSS2: 3.5	0% Низкий	около 18 лет назад
CVE-2007-2450 Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager and (2) Host Manager web applications in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote authenticated users to inject arbitrary web script or HTML via a parameter name to manager/html/upload, and other unspecified vectors.		0% Низкий	около 18 лет назад
CVE-2007-2450 Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager and (2) Host Manager web applications in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote authenticated users to inject arbitrary web script or HTML via a parameter name to manager/html/upload, and other unspecified vectors.	CVSS2: 3.5	0% Низкий	около 18 лет назад
CVE-2007-2450 Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager ...	CVSS2: 3.5	0% Низкий	около 18 лет назад
CVE-2007-2449 Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.	CVSS2: 4.3	89% Высокий	около 18 лет назад
CVE-2007-2449 Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.		89% Высокий	около 18 лет назад
CVE-2007-2449 Multiple cross-site scripting (XSS) vulnerabilities in certain JSP files in the examples web application in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.24, and 6.0.0 through 6.0.13 allow remote attackers to inject arbitrary web script or HTML via the portion of the URI after the ';' character, as demonstrated by a URI containing a "snp/snoop.jsp;" sequence.	CVSS2: 4.3	89% Высокий	около 18 лет назад
CVE-2007-2449 Multiple cross-site scripting (XSS) vulnerabilities in certain JSP fil ...	CVSS2: 4.3	89% Высокий	около 18 лет назад
GHSA-hc39-rjwp-qffq Apache Tomcat XSS Vulnerabilities in Examples Web Application		89% Высокий	около 3 лет назад
GHSA-5c5p-jxvx-x7j2 Apache Tomcat vulnerable to Cross-site Scripting		0% Низкий	около 3 лет назад

Уязвимостей на страницу