Maven package
org.apache.tomcat.embed/tomcat-embed-core
pkg:maven/org.apache.tomcat.embed/tomcat-embed-core
Vulnerabilities (61)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2008-1947 | — | >= 5.5.9, < 5.5.27 | 5.5.27 | Jun 4, 2008 | Cross-site scripting (XSS) vulnerability in Apache Tomcat 5.5.9 through 5.5.26 and 6.0.0 through 6.0.16 allows remote attackers to inject arbitrary web script or HTML via the name parameter (aka the hostname attribute) to host-manager/html/add. |
- CVE-2008-1947Jun 4, 2008affected >= 5.5.9, < 5.5.27fixed 5.5.27
Cross-site scripting (XSS) vulnerability in Apache Tomcat 5.5.9 through 5.5.26 and 6.0.0 through 6.0.16 allows remote attackers to inject arbitrary web script or HTML via the name parameter (aka the hostname attribute) to host-manager/html/add.
Page 4 of 4