Description

Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, which could allow attackers to bypass intended restrictions.

Remediation

References

CVE-2002-0493

Related Vulnerabilities

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-29673)

WordPress Plugin PDF Embedder Security Bypass (4.4)

WordPress Plugin WP to Twitter Cross-Site Scripting (3.0.5)

WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Request Forgery (8.9)

WordPress Plugin Print Invoice & Delivery Notes for WooCommerce Cross-Site Request Forgery (4.7.2)

Severity

High

Classification

CVE-2002-0493

Tags

Missing Update Known Vulnerabilities