Loading...
Loading...
Cross-site scripting (XSS) vulnerability in the Host Manager Servlet for Apache Tomcat 6.0.0 to 6.0.13 and 5.5.0 to 5.5.24 allows remote attackers to inject arbitrary HTML and web script via crafted requests, as demonstrated using the aliases parameter to an html/add action.
August 14, 2007
April 23, 2026
See which npm, PyPI, Go, and Maven packages are affected by CVE-2007-3386
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.