Apache Tomcat is the United States Apache (Apache) Foundation of a lightweight Web application server. The program implements the Servlet and JavaServer Page (JSP) support. An open redirection vulnerability exists in Apache Tomcat, which stems from the FORM authentication feature not handling target jumps appropriately, and can be exploited by an attacker to redirect URLs to untrusted sites.
CPE | Name | Operator | Version |
---|---|---|---|
apache tomcat >=9.0.0, | le | 9.0.79 | |
apache tomcat >=8.5.0, | le | 8.5.92 | |
apache tomcat >=10.1.0, | le | 10.1.12 |