CVE-2002-0682

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
23/07/2002
Last modified:
20/11/2024

Description

Cross-site scripting vulnerability in Apache Tomcat 4.0.3 allows remote attackers to execute script as other web users via script in a URL with the /servlet/ mapping, which does not filter the script when an exception is thrown by the servlet.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*