Lucene search
K

13 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Apache Tomcat <= 6.0.13 Host Manager Servlet Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25314/info Apache Tomcat Host Manager Servlet is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to inject...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/01/10 12:0 a.m.63 views

RHEL 4 : Satellite Server (RHSA-2008:0630)

Red Hat Network Satellite Server version 5.1.1 is now available. This update includes fixes for a number of security issues in Red Hat Network Satellite Server components. This update has been rated as having low security impact by the Red Hat Security Response Team. During an internal security...

9.1CVSS5.4AI score0.77376EPSS
Exploits9References23
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.30 views

Fedora Update for tomcat5 FEDORA-2007-3474

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.3CVSS7.7AI score0.77376EPSS
Exploits12References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.29 views

Fedora Update for tomcat5 FEDORA-2007-3456

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.3CVSS7.7AI score0.77376EPSS
Exploits12References2
OpenVAS
OpenVAS
added 2009/02/16 12:0 a.m.28 views

Fedora Update for tomcat5 FEDORA-2008-1467

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.4CVSS5AI score0.77376EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.31 views

FreeBSD Ports: apache-tomcat

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5CVSS4AI score0.90768EPSS
Exploits5References1
RedHat Linux
RedHat Linux
added 2008/05/20 2:12 p.m.65 views

Moderate: Red Hat Security Advisory: Red Hat Network Satellite Server security update

Red Hat Network Satellite Server version 5.0.2 is now available. This update includes fixes for a number of security issues in Red Hat Network Satellite Server components. This update has been rated as having moderate security impact by the Red Hat Security Response Team. During an internal...

10CVSS6.5AI score0.90768EPSS
Exploits29References3
ALT Linux
ALT Linux
added 2007/11/30 12:0 a.m.42 views

Security fix for the ALT Linux 5 package tomcat5 version 0:5.5.25-alt1_1.1jpp5.0

Nov. 30, 2007 Igor Vlasenko 0:5.5.25-alt11.1jpp5.0 - Updated to 5.5.25, to fix the following issues: CVE-2007-1355 CVE-2007-3386 CVE-2007-3385 CVE-2007-3382 CVE-2007-2450 CVE-2007-2449 - Applied patch20 for CVE-2007-5461 - Applied patch21 for CVE-2007-1358 - Add jasper-eclipse subpackage which is...

4.3CVSS5.3AI score0.77376EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2007/11/20 12:0 a.m.42 views

Fedora 8 : tomcat5-5.5.25-1jpp.1.fc8 (2007-3474)

Updated Tomcat5 packages that fix several security bugs are now available for Fedora Core 8. This update includes fixes to the following : - CVE-2007-1355 - CVE-2007-3386 - CVE-2007-3385 - CVE-2007-3382 - CVE-2007-2450 - CVE-2007-2449 - CVE-2007-5461 - CVE-2007-1358 All users of tomcat are advise...

4.3CVSS5.5AI score0.77376EPSS
Exploits12References19
Tenable Nessus
Tenable Nessus
added 2007/08/02 12:0 a.m.83 views

Mac OS X Multiple Vulnerabilities (Security Update 2007-007)

The remote host is running a version of Mac OS X 10.4 or 10.3 which does not have the security update 2007-007 applied. This update contains several security fixes for the following programs : - bzip2 - CFNetwork - CoreAudio - cscope - gnuzip - iChat - Kerberos - mDNSResponder - PDFKit - PHP -...

10CVSS8AI score0.90768EPSS
Exploits55References45
NVD
NVD
added 2007/05/10 12:19 a.m.20 views

CVE-2007-1358

Cross-site scripting XSS vulnerability in certain applications using Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.34 allows remote attackers to inject arbitrary web script or HTML via crafted "Accept-Language headers that do not conform to RFC 2616"...

2.6CVSS5.5AI score0.19889EPSS
Exploits1References38
CVE
CVE
added 2007/05/09 10:0 p.m.117 views

CVE-2007-1358

CVE-2007-1358 is an XSS vulnerability affecting Apache Tomcat 4.x. It allows remote attackers to inject arbitrary script or HTML via crafted Accept-Language headers that do not conform to RFC 2616. Affected product ranges include Tomcat 4.0.0–4.0.6 and 4.1.0–4.1.34. The issue is triggered by impr...

2.6CVSS7.6AI score0.19889EPSS
Exploits1References38Affected Software1
Apache Tomcat
Apache Tomcat
added 2007/05/09 12:0 a.m.54 views

Fixed in Apache Tomcat 5.5.21, 5.0.SVN

Low: Cross-site scripting CVE-2007-1358 Web pages that display the Accept-Language header value sent by the client are susceptible to a cross-site scripting attack if they assume the Accept-Language header value conforms to RFC 2616. Under normal circumstances this would not be possible to exploi...

2.6CVSS8.6AI score0.19889EPSS
Exploits1Affected Software1
Rows per page
Query Builder