Vulnerabilities > Apache > Tomcat
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-12-06 | CVE-2001-0829 | Cross-Site Scripting vulnerability in Apache Tomcat 3.2.1 A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message. | 5.1 |
| 2001-08-02 | CVE-2001-0590 | Unspecified vulnerability in Apache Tomcat Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source code to arbitrary 'jsp' files via a malformed URL request which does not end with an HTTP protocol specification (i.e. | 5.0 |
| 2000-07-20 | CVE-2000-0672 | Unspecified vulnerability in Apache Tomcat 3.0/3.1 The default configuration of Jakarta Tomcat does not restrict access to the /admin context, which allows remote attackers to read arbitrary files by directly calling the administrative servlets to add a context for the root directory. | 5.0 |