- Home
- CVEs with nessus.description==The Apache Project reports :
The JSP and Servlet included in the sample application within the
Tomcat documentation webapp did not escape user provided data before
including it in the output. This enabled a XSS attack. These pages
have been simplified not to use any user provided data in the output
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top