CVE-2007-3386 (retired)

Priority
Description
Cross-site scripting (XSS) vulnerability in the Host Manager Servlet for
Apache Tomcat 6.0.0 to 6.0.13 and 5.5.0 to 5.5.24 allows remote attackers
to inject arbitrary HTML and web script via crafted requests, as
demonstrated using the aliases parameter to an html/add action.
Notes
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-10-09 07:07:26 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)