Description
Multiple cross-site scripting (XSS) vulnerabilities in the appdev/sample/web/hello.jsp example application in Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.36, 5.0.0 through 5.0.30, 5.5.0 through 5.5.23, and 6.0.0 through 6.0.10 allow remote attackers to inject arbitrary web script or HTML via the test parameter and unspecified vectors.
Remediation
References
Related Vulnerabilities
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-4403)
MySQL CVE-2019-2808 Vulnerability (CVE-2019-2808)
Drupal Core 7.x Multiple Vulnerabilities (7.0 - 7.15)
Nginx Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9516)
Apache HTTP Server CVE-2009-1191 Vulnerability (CVE-2009-1191)