logo
DATABASE RESOURCES PRICING ABOUT US

Cross-site Scripting (XSS)

Description

tomcat is vulnerable to cross-site scripting. The vulnerability exists because the user-provided `name`, `value`, and `type` form attributes are not filtered before being displayed on the web page, allowing an attacker to inject and execute malicious javascript.


Affected Software


CPE Name Name Version
tomcat 9.0.64
tomcat 8.5.81
tomcat 10.0.22
tomcat 10.1.0-M16
tomcat 10.1.0-M1
tomcat 10.0.0-M1
tomcat 9.0.30
tomcat 8.5.50
tomcat 9.0.64
tomcat 8.5.81
tomcat 10.0.22
tomcat 10.1.0-M16
tomcat 10.1.0-M1
tomcat 10.0.0-M1
tomcat 9.0.30
tomcat 8.5.50

Related