Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apache tomcat 4.1.24 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2090
Jakarta Tomcat 5.0.19 (Coyote/1.1) and Tomcat 4.1.24 (Coyote/1.0) allows remote malicious users to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content...
Apache Tomcat 5.0.19
Apache Tomcat 4.1.24
NA
CVE-2007-3383
Cross-site scripting (XSS) vulnerability in SendMailServlet in the examples web application (examples/jsp/mail/sendmail.jsp) in Apache Tomcat 4.0.0 up to and including 4.0.6 and 4.1.0 up to and including 4.1.36 allows remote malicious users to inject arbitrary web script or HTML ...
Apache Tomcat 4.1.2
Apache Tomcat 4.0.4
Apache Tomcat 4.1.36
Apache Tomcat 4.1.24
Apache Tomcat 4.1.31
Apache Tomcat 4.0.6
Apache Tomcat 4.0.3
Apache Tomcat 4.0.1
Apache Tomcat 4.1.1
Apache Tomcat 4.1.28
Apache Tomcat 4.1.15
Apache Tomcat 4.1.10
Apache Tomcat 4.1.0
Apache Tomcat 4.0.2
Apache Tomcat 4.1.3
Apache Tomcat 4.0.5
Apache Tomcat 4.0.0
NA
CVE-2005-4836
The HTTP/1.1 connector in Apache Tomcat 4.1.15 up to and including 4.1.40 does not reject NULL bytes in a URL when allowLinking is configured, which allows remote malicious users to read JSP source files and obtain sensitive information.
Apache Tomcat 4.1.35
Apache Tomcat 4.1.36
Apache Tomcat 4.1.21
Apache Tomcat 4.1.24
Apache Tomcat 4.1.25
Apache Tomcat 4.1.39
Apache Tomcat 4.1.27
Apache Tomcat 4.1.30
Apache Tomcat 4.1.18
Apache Tomcat 4.1.40
Apache Tomcat 4.1.19
Apache Tomcat 4.1.28
Apache Tomcat 4.1.31
Apache Tomcat 4.1.16
Apache Tomcat 4.1.29
Apache Tomcat 4.1.22
Apache Tomcat 4.1.26
Apache Tomcat 4.1.17
Apache Tomcat 4.1.33
Apache Tomcat 4.1.15
Apache Tomcat 4.1.20
Apache Tomcat 4.1.23
NA
CVE-2008-3271
Apache Tomcat 5.5.0 and 4.1.0 up to and including 4.1.31 allows remote malicious users to bypass an IP address restriction and obtain sensitive information via a request that is processed concurrently with another request but in a different thread, leading to an instance-variable...
Apache Tomcat 4.1.2
Apache Tomcat 4.1.21
Apache Tomcat 4.1.24
Apache Tomcat 4.1.25
Apache Tomcat 4.1.4
Apache Tomcat 4.1.27
Apache Tomcat 4.1.30
Apache Tomcat 4.1.7
Apache Tomcat 4.1.11
Apache Tomcat 4.1.18
Apache Tomcat 4.1.14
Apache Tomcat 4.1.19
Apache Tomcat 4.1.31
Apache Tomcat 4.1.16
Apache Tomcat 4.1.29
Apache Tomcat 4.1.22
Apache Tomcat 4.1.5
Apache Tomcat 4.1.26
Apache Tomcat 4.1.13
Apache Tomcat 4.1.8
Apache Tomcat 4.1.17
Apache Tomcat 5.5.0
NA
CVE-2007-5461
Absolute path traversal vulnerability in Apache Tomcat 4.0.0 up to and including 4.0.6, 4.1.0, 5.0.0, 5.5.0 up to and including 5.5.25, and 6.0.0 up to and including 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write...
Apache Tomcat 4.1.2
Apache Tomcat 4.0.4
Apache Tomcat 4.1.35
Apache Tomcat 4.1.36
Apache Tomcat 4.1.21
Apache Tomcat 4.1.24
Apache Tomcat 4.1.25
Apache Tomcat 4.1.4
Apache Tomcat 4.1.27
Apache Tomcat 4.1.30
Apache Tomcat 4.1.7
Apache Tomcat 4.1.11
Apache Tomcat 4.1.18
Apache Tomcat 4.1.14
Apache Tomcat 4.1.19
Apache Tomcat 4.1.31
Apache Tomcat 4.1.16
Apache Tomcat 4.1.29
Apache Tomcat 4.1.22
Apache Tomcat 4.0.6
Apache Tomcat 4.1.5
Apache Tomcat 4.1.26
2 EDB exploits
NA
CVE-2007-1355
Multiple cross-site scripting (XSS) vulnerabilities in the appdev/sample/web/hello.jsp example application in Tomcat 4.0.0 up to and including 4.0.6, 4.1.0 up to and including 4.1.36, 5.0.0 up to and including 5.0.30, 5.5.0 up to and including 5.5.23, and 6.0.0 up to and includin...
Apache Tomcat 4.0.4
Apache Tomcat 5.0.8
Apache Tomcat 5.0.19
Apache Tomcat 6.0.6
Apache Tomcat 5.0.14
Apache Tomcat 4.1.24
Apache Tomcat 5.0.22
Apache Tomcat 5.0.7
Apache Tomcat 6.0.7
Apache Tomcat 6.0.4
Apache Tomcat 5.0.9
Apache Tomcat 5.0.15
Apache Tomcat 5.0.30
Apache Tomcat 5.0.23
Apache Tomcat 5.0.2
Apache Tomcat 5.0.10
Apache Tomcat 5.0.21
Apache Tomcat 5.0.26
Apache Tomcat 6.0.10
Apache Tomcat 6.0.3
Apache Tomcat 5.0.6
Apache Tomcat 6.0.9
1 EDB exploit
NA
CVE-2008-2370
Apache Tomcat 4.1.0 up to and including 4.1.37, 5.5.0 up to and including 5.5.26, and 6.0.0 up to and including 6.0.16, when a RequestDispatcher is used, performs path normalization before removing the query string from the URI, which allows remote malicious users to conduct dire...
Apache Tomcat 4.1.2
Apache Tomcat 4.1.35
Apache Tomcat 4.1.36
Apache Tomcat 5.5.18
Apache Tomcat 4.1.21
Apache Tomcat 6.0.6
Apache Tomcat 6.0.11
Apache Tomcat 5.5.12
Apache Tomcat 5.5.14
Apache Tomcat 4.1.24
Apache Tomcat 5.5.10
Apache Tomcat 5.5.4
Apache Tomcat 5.5.7
Apache Tomcat 5.5.1
Apache Tomcat 6.0.7
Apache Tomcat 5.5.11
Apache Tomcat 4.1.25
Apache Tomcat 6.0.4
Apache Tomcat 5.5.6
Apache Tomcat 5.5.26
Apache Tomcat 4.1.4
Apache Tomcat 5.5.20
1 EDB exploit
NA
CVE-2008-5515
Apache Tomcat 4.1.0 up to and including 4.1.39, 5.5.0 up to and including 5.5.27, 6.0.0 up to and including 6.0.18, and possibly earlier versions normalizes the target pathname before filtering the query string when using the RequestDispatcher method, which allows remote maliciou...
Apache Tomcat 5.5.27
Apache Tomcat 4.1.2
Apache Tomcat 4.1.35
Apache Tomcat 4.1.36
Apache Tomcat 5.5.18
Apache Tomcat 4.1.21
Apache Tomcat 6.0.6
Apache Tomcat 5.5.12
Apache Tomcat 5.5.14
Apache Tomcat 4.1.24
Apache Tomcat 5.5.10
Apache Tomcat 5.5.4
Apache Tomcat 5.5.7
Apache Tomcat 5.5.1
Apache Tomcat 6.0.7
Apache Tomcat 5.5.11
Apache Tomcat 4.1.25
Apache Tomcat 6.0.4
Apache Tomcat 5.5.6
Apache Tomcat 5.5.26
Apache Tomcat 4.1.39
Apache Tomcat 5.5.20
NA
CVE-2007-2450
Multiple cross-site scripting (XSS) vulnerabilities in the (1) Manager and (2) Host Manager web applications in Apache Tomcat 4.0.0 up to and including 4.0.6, 4.1.0 up to and including 4.1.36, 5.0.0 up to and including 5.0.30, 5.5.0 up to and including 5.5.24, and 6.0.0 up to and...
Apache Tomcat 4.1.2
Apache Tomcat 4.0.4
Apache Tomcat 4.1.36
Apache Tomcat 4.1.9
Apache Tomcat 5.5.18
Apache Tomcat 5.0.8
Apache Tomcat 5.0.19
Apache Tomcat 6.0.6
Apache Tomcat 6.0.11
Apache Tomcat 5.5.12
Apache Tomcat 5.0.14
Apache Tomcat 5.5.14
Apache Tomcat 4.1.24
Apache Tomcat 5.5.10
Apache Tomcat 5.0.22
Apache Tomcat 5.5.4
Apache Tomcat 5.5.7
Apache Tomcat 5.5.1
Apache Tomcat 5.0.7
Apache Tomcat 6.0.7
Apache Tomcat 5.5.11
Apache Tomcat 6.0.4
NA
CVE-2009-0033
Apache Tomcat 4.1.0 up to and including 4.1.39, 5.5.0 up to and including 5.5.27, and 6.0.0 up to and including 6.0.18, when the Java AJP connector and mod_jk load balancing are used, allows remote malicious users to cause a denial of service (application outage) via a crafted re...
Apache Tomcat 5.5.27
Apache Tomcat 4.1.2
Apache Tomcat 4.1.35
Apache Tomcat 4.1.36
Apache Tomcat 4.1.9
Apache Tomcat 5.5.18
Apache Tomcat 4.1.21
Apache Tomcat 6.0.6
Apache Tomcat 6.0.11
Apache Tomcat 5.5.12
Apache Tomcat 5.5.14
Apache Tomcat 4.1.24
Apache Tomcat 5.5.10
Apache Tomcat 5.5.4
Apache Tomcat 5.5.7
Apache Tomcat 5.5.1
Apache Tomcat 6.0.7
Apache Tomcat 5.5.11
Apache Tomcat 4.1.25
Apache Tomcat 6.0.4
Apache Tomcat 5.5.6
Apache Tomcat 5.5.26
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-11056
CVE-2024-51690
CVE-2024-45519
man-in-the-middle
CVE-2024-51611
TCP
unspecified
CVE-2024-36250
CVE-2024-10914
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »