Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Improper Neutralization of Input During Web Page Generation in Apache Tomcat

🗓️ 03 May 2022 03:09:25Reported by GitHub Advisory DatabaseType 
github
 github🔗 github.com👁 27 Views

Improper Input Neutralization in Apache Tomcat HTML Manager Interfac

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Tenable Nessus		Apache Tomcat 7.0.0 < 7.0.6
14 Feb 201100:00
nessus
Tenable Nessus		FreeBSD : tomcat -- XSS vulnerability (553ec4ed-38d6-11e0-94b1-000c29ba66d2)
16 Feb 201100:00
nessus
Tenable Nessus		Apache Tomcat 5.5.x < 5.5.32 HTML Manager Interface XSS
11 Feb 201100:00
nessus
Tenable Nessus		Mandriva Linux Security Advisory : tomcat5 (MDVSA-2011:030)
20 Feb 201100:00
nessus
Tenable Nessus		Oracle Linux 6 : tomcat6 (ELSA-2011-0791)
7 Sep 202300:00
nessus
Tenable Nessus		Debian DSA-2160-1 : tomcat6 - several vulnerabilities
14 Feb 201100:00
nessus
Tenable Nessus		SuSE9 Security Update : Tomcat (YOU Patch Number 12687)
18 Mar 201100:00
nessus
Tenable Nessus		openSUSE Security Update : tomcat6 (openSUSE-SU-2011:0146-1)
5 May 201100:00
nessus
Tenable Nessus		Scientific Linux Security Update : tomcat6 on SL6.x i386/x86_64
1 Aug 201200:00
nessus
Tenable Nessus		SuSE 10 Security Update : Tomcat (ZYPP Patch Number 7337)
3 Mar 201100:00
nessus
Rows per page
Vulners
Node
org.apache.tomcattomcatRange7.0.07.0.6
OR
org.apache.tomcattomcatRange6.0.06.0.30
OR
org.apache.tomcattomcatRange5.5.05.5.32
SourceLink
nvdwww.nvd.nist.gov/vuln/detail/CVE-2011-0013
bugzillawww.bugzilla.redhat.com/show_bug.cgi
listswww.lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
listswww.lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
listswww.lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E
listswww.lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
ovalwww.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12878
ovalwww.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14945
ovalwww.oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19269
listswww.lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
Rows per page

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
03 May 2022 03:25Current
4.6Medium risk
Vulners AI Score4.6
CVSS24.3
EPSS0.13615
CWE-79
apache tomcatinput neutralizationhtml manager interfacecross-site scriptingvulnerabilities
27
.json
Report