- Home
- CVEs with nessus.description==The version of Apache Tomcat running on the remote web server is affected by a cross-site scripting vulnerability due to a failure to properly sanitize request strings of malicious JavaScript. A remote, unauthenticated attacker can exploit this to execute arbitrary code by using a URL containing encoded newline characters that are followed by a request to a .jsp file that has a crafted file name.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top