Lucene search
ApacheCVELIST:CVE-2022-34305HistoryJun 23, 2022 - 10:30 a.m.
CVE-2022-34305 XSS in examples web application
2022-06-2310:30:16
CWE-79
apache
www.cve.org
In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability.
CNA Affected
[
{
"product": "Apache Tomcat",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "Apache Tomcat 8.5 8.5.50 to 8.5.81"
},
{
"status": "affected",
"version": "Apache Tomcat 9 9.0.30 to 9.0.64"
},
{
"status": "affected",
"version": "Apache Tomcat 10.0 10.0.0-M1 to 10.0.22"
},
{
"status": "affected",
"version": "Apache Tomcat 10.1 10.1.0-M1 to 10.1.0-M16"
}
]
}
]Related
atlassian
atlassian
Confluence Apache Tomcat CVE-2022-34305
2022-07-07 19:05:27
Apache Tomcat CVE-2022-34305
2022-06-28 14:48:07
nessus
nessus
FreeBSD : Tomcat -- XSS in examples web application (e2e7faf9-1b51-11ed-ae46-002b67dfc673)
2022-08-16 00:00:00
Apache Tomcat 10.0.0.M1 < 10.0.23
2022-06-23 00:00:00
Dell EMC NetWorker < 19.7.0.2 XSS (DSA-2022-341)
2022-12-08 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 8.5.82
2022-08-13 00:00:00
Fixed in Apache Tomcat 10.1.0-M17
2022-07-20 00:00:00
Fixed in Apache Tomcat 10.0.23
2022-07-26 00:00:00
kaspersky
kaspersky
KLA19262 XSS vulnerability in Apache Tomcat
2022-07-26 00:00:00
KLA19260 XSS vulnerability in Apache Tomcat
2022-08-28 00:00:00
KLA19261 XSS vulnerability in Apache Tomcat
2022-07-20 00:00:00
github
github
Cross-site Scripting in Apache Tomcat
2022-06-24 00:00:32
ibm
ibm
redhatcve
redhatcve
CVE-2022-34305
2022-06-30 18:05:42
openvas
openvas
Apache Tomcat XSS Vulnerability (Jun 2022) - Linux
2022-06-24 00:00:00
Apache Tomcat XSS Vulnerability (Jun 2022) - Windows
2022-06-24 00:00:00
Mageia: Security Advisory (MGASA-2023-0138)
2023-04-17 00:00:00
cve
cve
CVE-2022-34305
2022-06-23 11:15:07
osv
osv
Cross-site Scripting in Apache Tomcat
2022-06-24 00:00:32
BIT-tomcat-2022-34305
2024-03-06 11:09:17
CVE-2022-34305
2022-06-23 11:15:07
freebsd
freebsd
Tomcat -- XSS in examples web application
2022-06-22 00:00:00
cnvd
cnvd
Apache Tomcat Cross-Site Scripting Vulnerability
2022-06-27 00:00:00
prion
prion
Cross site scripting
2022-06-23 11:15:00
debiancve
debiancve
CVE-2022-34305
2022-06-23 11:15:07
veracode
veracode
Cross-site Scripting (XSS)
2022-06-24 04:07:07
ubuntucve
ubuntucve
CVE-2022-34305
2022-06-23 00:00:00
nvd
nvd
CVE-2022-34305
2022-06-23 11:15:07
f5
f5
K00303143 : Apache Tomcat vulnerability CVE-2022-34305
2022-07-11 00:00:00
gentoo
gentoo
Apache Tomcat: Multiple Vulnerabilities
2022-08-21 00:00:00
mageia
mageia
Updated tomcat packages fix security vulnerability
2023-04-15 22:03:44
rosalinux
rosalinux
Advisory ROSA-SA-2023-2258
2023-10-21 16:49:43
oracle
oracle
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00