QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2011-0013

Back to search

CVE-2011-0013

Published: Feb 18, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in the HTML Manager Interface in Apache Tomcat 5.5 before 5.5.32, 6.0 before 6.0.30, and 7.0 before 7.0.6 allow remote attackers to inject arbitrary web script or HTML, as demonstrated via the display-name tag.

VendorProductVersions

n/a

n/a

affected
n/a

References

HPSBUX02860
vendor-advisory
x_refsource_HP
oval:org.mitre.oval:def:12878
vdb-entry
signature
x_refsource_OVAL
ADV-2011-0376
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:19269
vdb-entry
signature
x_refsource_OVAL
45022
third-party-advisory
x_refsource_SECUNIA
RHSA-2011:1845
vendor-advisory
x_refsource_REDHAT
46174
vdb-entry
x_refsource_BID
SUSE-SR:2011:005
vendor-advisory
x_refsource_SUSE
SSRT100627
vendor-advisory
x_refsource_HP
APPLE-SA-2011-10-12-3
vendor-advisory
x_refsource_APPLE
MDVSA-2011:030
vendor-advisory
x_refsource_MANDRIVA
RHSA-2011:0897
vendor-advisory
x_refsource_REDHAT
57126
third-party-advisory
x_refsource_SECUNIA
RHSA-2011:0791
vendor-advisory
x_refsource_REDHAT
oval:org.mitre.oval:def:14945
vdb-entry
signature
x_refsource_OVAL
43192
third-party-advisory
x_refsource_SECUNIA
1025026
vdb-entry
x_refsource_SECTRACK
RHSA-2011:0896
vendor-advisory
x_refsource_REDHAT
DSA-2160
vendor-advisory
x_refsource_DEBIAN
HPSBUX02725
vendor-advisory
x_refsource_HP
SSRT101146
vendor-advisory
x_refsource_HP
8093
third-party-advisory
x_refsource_SREASON
HPSBUX02645
vendor-advisory
x_refsource_HP
HPSBST02955
vendor-advisory
x_refsource_HP

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now