Vulnerability in N/a
CVE-2007-1355
Multiple cross-site scripting (XSS) vulnerabilities in the appdev/sample/web/hello.jsp example application in Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.23, and 6.0.0 through 6.0.10 allow remo…
EPSS: 0.824 (99.2th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- tomcat.apache.org/security-4.html (x_refsource_CONFIRM)
- 30908 (x_refsource_SECUNIA, third-party-advisory)
- support.apple.com/kb/HT2163 (x_refsource_CONFIRM)
- RHSA-2008:0630 (x_refsource_REDHAT, vendor-advisory)
- 239312 (vendor-advisory, x_refsource_SUNALERT)
- oval:org.mitre.oval:def:6111 (signature, x_refsource_OVAL, vdb-entry)
- ADV-2008-1981 (vdb-entry, x_refsource_VUPEN)
- 30899 (x_refsource_SECUNIA, third-party-advisory)
- FEDORA-2007-3456 (vendor-advisory, x_refsource_FEDORA)
- 31493 (x_refsource_SECUNIA, third-party-advisory)