Description

A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.

Remediation

References

CVE-2001-0829

Related Vulnerabilities

Oracle Database Server CVE-2009-3411 Vulnerability (CVE-2009-3411)

WordPress Plugin Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction Cross-Site Scripting (3.0.17)

WordPress Plugin GigPress 'Notes' Field HTML Injection (2.1.10)

WordPress Plugin Rating-Widget:Star Review System Security Bypass (2.8.9)

Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-3170)

Severity

Medium

Classification

CVE-2001-0829

Tags

Missing Update Known Vulnerabilities