| CVE-2009-3555 |
critical |
9.8 |
10.0 |
|
|
|
17y ago |
The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9… |
| CVE-2014-0050 |
high |
— |
8.5 |
|
|
|
12y ago |
Commons FileUpload Denial of service vulnerability |
| CVE-2010-2227 |
medium |
— |
7.4 |
|
|
|
16y ago |
Apache Tomcat does not properly handle an invalid Transfer-Encoding header |
| CVE-2011-4858 |
medium |
— |
6.0 |
|
|
|
15y ago |
Improper Input Validation in Apache Tomcat |
| CVE-2010-4476 |
medium |
— |
6.0 |
|
|
|
16y ago |
Apache Tomcat affected by infinite loop in Double.parseDouble method in Java Runtime Environment |
| CVE-2010-4172 |
medium |
— |
5.3 |
|
|
|
16y ago |
Improper Neutralization of Input During Web Page Generation in Apache Tomcat |
| CVE-2010-1157 |
low |
— |
3.6 |
|
|
|
16y ago |
Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat |
| CVE-2022-29885 |
unknown |
— |
1.0 |
|
|
|
4y ago |
The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to r… |
| CVE-2009-0580 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Exposure of Sensitive Information in Apache Tomcat |
| CVE-2008-2938 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Directory Traversal vulnerability |
| CVE-2008-2370 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Path Traversal Vulnerability |
| CVE-2008-1232 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Cross-site scripting (XSS) vulnerability |
| CVE-2007-5461 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Path Traversal Vulnerability |
| CVE-2007-5333 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Exposure of Sensitive Information in Apache Tomcat |
| CVE-2007-3382 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat treats single quotes as delimiters in cookies |
| CVE-2007-2449 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat XSS Vulnerabilities in Examples Web Application |
| CVE-2007-0450 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Directory Traversal |
| CVE-2006-7196 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Cross-site scripting in Apache Tomcat |
| CVE-2006-3835 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Reveals Directories |
| CVE-2005-4703 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Discloses MS-DOS Pathname |
| CVE-2002-2272 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat DoS via Malicious Get Request |
| CVE-2002-2006 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Default Installation Reveals Sensitive Information |
| CVE-2002-1567 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat XSS Vulnerability |
| CVE-2002-1148 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Source Code Disclosure |
| CVE-2000-0759 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Jakarta Apache Tomcat Reveals Physical Paths |
| CVE-2003-0866 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Apache Tomcat Denial of Service vulnerability in the Catalina package |
| CVE-2003-0042 |
unknown |
— |
1.0 |
|
|
|
4y ago |
Jakarta Tomcat Directory Listing vulnerability |
