← back
CVE-2007-3384

CVE-2007-3384

EPSS 3.2%
Multiple cross-site scripting (XSS) vulnerabilities in examples/servlet/CookieExample in Apache Tomcat 3.3 through 3.3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Name or (2) Value field, related to error messages.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/39035http://securityreason.com/securityalert/2971http://securitytracker.com/id?1018503http://tomcat.apache.org/security-3.htmlhttp://www.securityfocus.com/archive/1/475321/100/0/threadedhttp://www.securityfocus.com/bid/25174