Lucene search
Ubuntu.comUB:CVE-2007-3383HistoryJul 25, 2007 - 12:00 a.m.
CVE-2007-3383
2007-07-2500:00:00
ubuntu.com
ubuntu.com
27
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.222
Percentile
96.6%
Cross-site scripting (XSS) vulnerability in SendMailServlet in the examples
web application (examples/jsp/mail/sendmail.jsp) in Apache Tomcat 4.0.0
through 4.0.6 and 4.1.0 through 4.1.36 allows remote attackers to inject
arbitrary web script or HTML via the From field and possibly other fields,
related to generation of error messages.
Related
cve
cve
CVE-2007-3383
2007-07-25 17:30:00
nvd
nvd
CVE-2007-3383
2007-07-25 17:30:00
prion
prion
Cross site scripting
2007-07-25 17:30:00
cert
cert
github
github
Apache Tomcat SendMailServlet XSS
2022-05-01 18:13:14
cvelist
cvelist
CVE-2007-3383
2007-07-25 17:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-03-26 01:19:45
securityvulns
securityvulns
CVE-2007-3383: XSS in Tomcat send mail example
2007-07-23 00:00:00
Apache Tomcat crossite scripting
2007-09-04 00:00:00
nessus
nessus
Apache Tomcat SendMailServlet sendmail.jsp 'mailfrom' Parameter XSS
2007-09-06 00:00:00
Apache Tomcat 4.x < 4.1.37 Multiple Vulnerabilities
2010-06-16 00:00:00
Mac OS X Multiple Vulnerabilities (Security Update 2008-004)
2008-07-01 00:00:00
osv
osv
Apache Tomcat SendMailServlet XSS
2022-05-01 18:13:14
tomcat
tomcat
Fixed in Apache Tomcat 4.1.37
2005-10-06 00:00:00
openvas
openvas
Mac OS X 10.5.4 Update / Mac OS X Security Update 2008-004
2010-05-12 00:00:00
Mac OS X 10.5.4 Update / Mac OS X Security Update 2008-004
2010-05-12 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.222
Percentile
96.6%
Related for UB:CVE-2007-3383