Apache Tomcat is a lightweight web application server from the Apache Foundation in the United States. The program implements support for Servlet and JavaServer Page (JSP). Apache Tomcat is vulnerable to privilege permission and access control issues, and an attacker can bypass Apache Tomcat’s restrictions via FileStore Sessions to elevate his privileges.