← back
CVE-2007-4724

CVE-2007-4724

EPSS 2.1%
Cross-site request forgery (CSRF) vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add events as arbitrary users via the time and description parameters.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2007-09/0040.htmlhttp://osvdb.org/41029http://securityreason.com/securityalert/3094http://www.securityfocus.com/archive/1/478491/100/0/threaded