3 matches found
GHSA-FV25-8XCX-GQJC Apache Tomcat - WebSocket authentication header exposure
Versions Affected: Apache Tomcat 11.0.0-M1 to 11.0.21 Apache Tomcat 10.1.0-M1 to 10.1.54 Apache Tomcat 9.0.2 to 9.0.117 Older, unsupported versions may also be affected Description: If a WebSocket request was redirected after authentication, Tomcat's WebSocket client would present the most recent...
Apache Tomcat Session Fixation vulnerability
Session Fixation vulnerability in Apache Tomcat via rewrite valve. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.7, from 10.1.0-M1 through 10.1.41, from 9.0.0.M1 through 9.0.105. Older, EOL versions may also be affected. Users are recommended to upgrade to version 11.0.8, 10.1.42 ...
HCL Technologies Campaign Cross-Site Scripting Vulnerability
HCL Technologies Campaign is a suite of management solutions from HCL Technologies India to help marketers design, execute, measure and optimize marketing campaigns. A cross-site scripting vulnerability exists in HCL Technologies Campaign versions 10.1.x, 11.0.1 and 11.1.0.x. The vulnerability ca...