CVE-2001-0829
published 2001-12-06CVE-2001-0829: A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the…
PriorityP414medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
13.82%
96.1th percentile
A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | tomcat | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Apache Tomcat allows webmasters to insert xss into error messages
osv·2022-04-30
CVE-2001-0829 [MEDIUM] Apache Tomcat allows webmasters to insert xss into error messages
Apache Tomcat allows webmasters to insert xss into error messages
A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.
GHSA
Apache Tomcat allows webmasters to insert xss into error messages
ghsa·2022-04-30
CVE-2001-0829 [MEDIUM] CWE-80 Apache Tomcat allows webmasters to insert xss into error messages
Apache Tomcat allows webmasters to insert xss into error messages
A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.htmlhttp://jakarta.apache.org/tomcat/tomcat-3.2-doc/readmehttp://www.securityfocus.com/bid/2982http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.htmlhttp://jakarta.apache.org/tomcat/tomcat-3.2-doc/readmehttp://www.securityfocus.com/bid/2982
2001-12-06
Published