Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.tomcat/tomcat@5.5.17
purl pkg:maven/org.apache.tomcat/tomcat@5.5.17
Tags Ghost
Next non-vulnerable version 9.0.117
Latest non-vulnerable version 11.0.21
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-skar-qk57-qkdv
Aliases:
CVE-2006-7195
GHSA-p57v-p3fx-qgwm
Cross-site scripting (XSS) vulnerability in implicit-objects.jsp in Apache Tomcat 5.0.0 through 5.0.30 and 5.5.0 through 5.5.17 allows remote attackers to inject arbitrary web script or HTML via certain header values.
5.5.18
Affected by 0 other vulnerabilities.
5.5.18,
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T16:00:28.501780+00:00 GHSA Importer Affected by VCID-skar-qk57-qkdv https://github.com/advisories/GHSA-p57v-p3fx-qgwm 38.0.0
2026-04-01T16:00:28.000136+00:00 GHSA Importer Fixing VCID-2jnv-segx-zkfd https://github.com/advisories/GHSA-wfj7-mhr5-pcwq 38.0.0
2026-04-01T13:09:30.035678+00:00 GithubOSV Importer Fixing VCID-2jnv-segx-zkfd https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-wfj7-mhr5-pcwq/GHSA-wfj7-mhr5-pcwq.json 38.0.0
2026-04-01T12:49:59.111111+00:00 GitLab Importer Fixing VCID-2jnv-segx-zkfd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2006-3835.yml 38.0.0
2026-04-01T12:49:58.110626+00:00 GitLab Importer Affected by VCID-skar-qk57-qkdv https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2006-7195.yml 38.0.0
2026-04-01T12:38:19.287397+00:00 Apache Tomcat Importer Affected by VCID-skar-qk57-qkdv https://tomcat.apache.org/security-5.html 38.0.0