Back to search
CVE-2007-3383
Published: Jul 25, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in SendMailServlet in the examples web application (examples/jsp/mail/sendmail.jsp) in Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.36 allows remote attackers to inject arbitrary web script or HTML via the From field and possibly other fields, related to generation of error messages.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
39000
vdb-entry
x_refsource_OSVDB
http://tomcat.apache.org/security-4.html
x_refsource_CONFIRM
http://support.apple.com/kb/HT2163
x_refsource_CONFIRM
ADV-2008-1981
vdb-entry
x_refsource_VUPEN
20070721 CVE-2007-3383: XSS in Tomcat send mail example
mailing-list
x_refsource_BUGTRAQ
APPLE-SA-2008-06-30
vendor-advisory
x_refsource_APPLE
30802
third-party-advisory
x_refsource_SECUNIA
VU#862600
third-party-advisory
x_refsource_CERT-VN
2918
third-party-advisory
x_refsource_SREASON
24999
vdb-entry
x_refsource_BID
ADV-2007-2618
vdb-entry
x_refsource_VUPEN
20070721 CVE-2007-3383: XSS in Tomcat send mail example
mailing-list
x_refsource_FULLDISC
tomcat-sendmail-example-xss(35536)
vdb-entry
x_refsource_XF
[tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/
mailing-list
x_refsource_MLIST
[tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/
mailing-list
x_refsource_MLIST
[tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now