Lucene search
K

7 matches found

OpenVAS
OpenVAS
added 2021/10/19 12:0 a.m.26 views

Apache Tomcat Session Fixation Vulnerability (Nov 2012) - Linux

Apache Tomcat is prone to a session fixation vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

6.8CVSS9.4AI score0.07147EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2013/10/16 4:45 p.m.2 views

tomcat: Session fixation in form authenticator

java/org/apache/catalina/authenticator/FormAuthenticator.java in the form authentication feature in Apache Tomcat 6.0.21 through 6.0.36 and 7.x before 7.0.33 does not properly handle the relationships between authentication requirements and sessions, which allows remote attackers to inject a...

6.8CVSS7.4AI score0.07147EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2013/06/20 2:36 p.m.5 views

tomcat: Session fixation in form authenticator

java/org/apache/catalina/authenticator/FormAuthenticator.java in the form authentication feature in Apache Tomcat 6.0.21 through 6.0.36 and 7.x before 7.0.33 does not properly handle the relationships between authentication requirements and sessions, which allows remote attackers to inject a...

6.8CVSS7.4AI score0.07147EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2013/06/06 12:0 a.m.33 views

Apache Tomcat Session Fixation Vulnerability (Nov 2012) - Windows

Apache Tomcat is prone to a session fixation vulnerability. Copyright C 2013 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

6.8CVSS6.6AI score0.07147EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2013/02/19 8:32 p.m.3 views

Tomcat/JBoss Web - Bypass of CSRF prevention filter

org/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.32 allows remote attackers to bypass the cross-site request forgery CSRF protection mechanism via a request that lacks a session identifier...

4.3CVSS7.3AI score0.09146EPSS
Exploits1References6
The Hacker News
The Hacker News
added 2012/12/05 6:45 a.m.41 views

Apache Tomcat Multiple Critical Vulnerabilities

Some critical vulnerabilities have been reported in Apache Tomcat, which can be exploited by malicious people to bypass certain security restrictions and cause a DoS Denial of Service attack. These vulnerabilities affect Apache Tomcat 6.x and Apache Tomcat 7.x . Apache Tomcat vulnerabilities...

4.3CVSS2.3AI score0.11975EPSS
Exploits3
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

2024-11 .NET 6.0.36 Update for x64 Server (KB5047486)

2024-11 .NET 6.0.36 Update for x64 Server KB5047486...

7AI score
Exploits0
Rows per page
Query Builder