Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:23200
HistoryApr 10, 2020 - 12:19 a.m.

Cross-Site Scripting (XSS)

2020-04-1000:19:32
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
32

EPSS

0.959

Percentile

99.5%

JSON

tomcat5 is vulnerable to cross-site scripting. Some JSPs within the ‘examples’ web application did not escape user provided data. If the JSP examples were accessible, this flaw could allow a remote attacker to perform cross-site scripting attacks.

References

Related

cvelist 1
ubuntucve 1
github 1
securityvulns 3
nessus 24
prion 1
osv 1
nvd 1
packetstorm 1
nuclei 1
cve 1
exploitdb 1
jvn 1
openvas 28
redhat 5
centos 1
oraclelinux 1
tomcat 3
altlinux 1
fedora 5
ibm 1
cvelist
cvelist
CVE-2007-2449
2007-06-14 23:00:00
ubuntucve
ubuntucve
CVE-2007-2449
2007-06-14 00:00:00
github
github
Apache Tomcat XSS Vulnerabilities in Examples Web Application
2022-05-01 18:03:36
securityvulns
securityvulns
[Full-disclosure] [CVE-2007-2449] Apache Tomcat XSS vulnerabilities in the JSP examples
2007-06-14 00:00:00
Apache Tomcat crossite scripting
2007-06-14 00:00:00
CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities (Updated - v1.1)
2009-01-28 00:00:00
nessus
nessus
Apache Tomcat snoop.jsp URI XSS
2007-06-18 00:00:00
openSUSE 10 Security Update : tomcat5 (tomcat5-5071)
2008-03-26 00:00:00
CentOS 5 : tomcat (CESA-2007:0569)
2007-07-27 00:00:00
prion
prion
Cross site scripting
2007-06-14 23:30:00
osv
osv
Apache Tomcat XSS Vulnerabilities in Examples Web Application
2022-05-01 18:03:36
nvd
nvd
CVE-2007-2449
2007-06-14 23:30:00
packetstorm
packetstorm
CVE-2007-2449.txt
2007-06-15 00:00:00
nuclei
nuclei
Apache Tomcat 4.x-7.x - Cross-Site Scripting
2024-09-09 17:01:10
cve
cve
CVE-2007-2449
2007-06-14 23:30:00
exploitdb
exploitdb
Apache Tomcat 6.0.13 - JSP Example Web Applications Cross-Site Scripting
2007-06-14 00:00:00
jvn
jvn
JVN#64851600 Apache Tomcat sample web application cross-site scripting vulnerability
2007-06-15 00:00:00
openvas
openvas
SLES9: Security update for Tomcat
2009-10-10 00:00:00
SLES10: Security update for Tomcat 5
2009-10-13 00:00:00
SLES9: Security update for Tomcat
2009-10-10 00:00:00
redhat
redhat
(RHSA-2007:0569) Moderate: tomcat security update
2007-07-17 00:00:00
(RHSA-2007:0876) Moderate: tomcat security update
2007-10-11 00:00:00
(RHSA-2008:0630) Low: Red Hat Network Satellite Server security update
2008-08-13 00:00:00
centos
centos
tomcat5 security update
2007-07-22 15:57:46
oraclelinux
oraclelinux
Moderate: tomcat security update
2007-07-17 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 5.5.25, 5.0.SVN
2007-09-08 00:00:00
Fixed in Apache Tomcat 6.0.14
2007-08-13 00:00:00
Fixed in Apache Tomcat 4.1.37
2005-10-06 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package tomcat5 version 0:5.5.25-alt1_1.1jpp5.0
2007-11-30 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: tomcat5-5.5.25-1jpp.1.fc7
2007-11-17 05:34:43
[SECURITY] Fedora 8 Update: tomcat5-5.5.25-1jpp.1.fc8
2007-11-17 05:37:36
[SECURITY] Fedora 8 Update: tomcat5-5.5.26-1jpp.2.fc8
2008-02-13 05:14:35
ibm
ibm
Security Bulletin: TADDM affected by multiple vulnerabilities due to Apache Tomcat libraries
2023-01-27 10:54:22

EPSS

0.959

Percentile

99.5%

JSON
Related for VERACODE:23200
cvelist1ubuntucve1github1securityvulns3nessus24prion1osv1nvd1packetstorm1nuclei1cve1exploitdb1jvn1openvas28redhat5centos1oraclelinux1tomcat3altlinux1fedora5ibm1