mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
800 B
800 B
CVE-2008-1947
Description
Cross-site scripting (XSS) vulnerability in Apache Tomcat 5.5.9 through 5.5.26 and 6.0.0 through 6.0.16 allows remote attackers to inject arbitrary web script or HTML via the name parameter (aka the hostname attribute) to host-manager/html/add.
POC
Reference
- http://www.redhat.com/support/errata/RHSA-2008-0862.html
- http://www.vmware.com/security/advisories/VMSA-2009-0016.html
Github
No PoCs found on GitHub currently.