Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5SOL9109
HistorySep 01, 2008 - 12:00 a.m.

SOL9109 - Apache Tomcat cross-site scripting vulnerability CVE-2008-1947

2008-09-0100:00:00
support.f5.com
18

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.216 Low

EPSS

Percentile

95.9%

JSON

Cross-site scripting (XSS) vulnerability in Apache Tomcat 5.5.9 through 5.5.26 and 6.0.0 through 6.0.16 allows remote attackers to inject arbitrary web script or HTML through the name parameter (the hostname attribute) to host-manager/html/add.

Information about this advisory is available at the following location:

<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1947&gt;

Related

veracode 1
nessus 18
seebug 1
securityvulns 3
cve 1
debian 1
prion 1
f5 1
packetstorm 1
ubuntucve 1
github 1
openvas 24
osv 1
vmware 4
tomcat 2
redhat 4
oraclelinux 1
centos 1
fedora 3
veracode
veracode
Cross-site Scripting (XSS)
2018-11-09 07:06:07
nessus
nessus
openSUSE Security Update : tomcat6 (tomcat6-68)
2009-07-21 00:00:00
Debian DSA-1593-1 : tomcat5.5 - missing input sanitising
2008-06-16 00:00:00
openSUSE 10 Security Update : tomcat55 (tomcat55-5385)
2008-07-08 00:00:00
seebug
seebug
Apache Tomcatไธปๆœบ็ฎก็†ๅ™จ่ทจ็ซ™่„šๆœฌๆผๆดž
2008-06-05 00:00:00
securityvulns
securityvulns
CA20100222-01: Security Notice for CA Service Desk
2010-02-25 00:00:00
Apache Tomcat crossite scripting
2010-02-25 00:00:00
[SECURITY] CVE-2008-1947: Tomcat host-manager XSS vulnerability
2008-06-04 00:00:00
cve
cve
CVE-2008-1947
2008-06-04 19:32:00
debian
debian
[SECURITY] [DSA 1593-1] New tomcat5.5 packages cross-site scripting
2008-06-09 19:38:32
prion
prion
Cross site scripting
2008-06-04 19:32:00
f5
f5
K9109 : Apache Tomcat cross-site scripting vulnerability CVE-2008-1947
2013-03-19 00:00:00
packetstorm
packetstorm
CVE-2008-1947.txt
2008-06-03 00:00:00
ubuntucve
ubuntucve
CVE-2008-1947
2008-06-04 00:00:00
github
github
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:45:13
openvas
openvas
Debian: Security Advisory (DSA-1593-1)
2008-06-11 00:00:00
Debian Security Advisory DSA 1593-1 (tomcat5.5)
2008-06-11 00:00:00
Fedora Update for tomcat6 FEDORA-2008-7977
2009-02-17 00:00:00
osv
osv
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:45:13
vmware
vmware
VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27
2009-02-23 00:00:00
VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27
2009-02-23 00:00:00
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components
2009-11-20 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 6.0.18
2008-07-31 00:00:00
Fixed in Apache Tomcat 5.5.27
2008-09-08 00:00:00
redhat
redhat
(RHSA-2008:0864) Important: tomcat security update
2008-10-02 00:00:00
(RHSA-2008:0648) Important: tomcat security update
2008-08-27 00:00:00
(RHSA-2008:1007) Low: tomcat security update for Red Hat Network Satellite Server
2008-12-08 00:00:00
oraclelinux
oraclelinux
tomcat security update
2008-08-27 00:00:00
centos
centos
tomcat5 security update
2008-08-28 22:01:41
fedora
fedora
[SECURITY] Fedora 9 Update: tomcat5-5.5.27-0jpp.2.fc9
2008-09-16 23:25:10
[SECURITY] Fedora 9 Update: tomcat6-6.0.18-1.1.fc9
2008-09-11 17:17:43
[SECURITY] Fedora 8 Update: tomcat5-5.5.27-0jpp.2.fc8
2008-09-16 23:28:35

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.216 Low

EPSS

Percentile

95.9%

JSON
Related for SOL9109
veracode1nessus18seebug1securityvulns3cve1debian1prion1f51packetstorm1ubuntucve1github1openvas24osv1vmware4tomcat2redhat4oraclelinux1centos1fedora3