Search for packages
| purl | pkg:maven/org.apache.tomcat/tomcat@4.1.36 |
| Tags | Ghost |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 10.0 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1bxb-dc7f-aaad
Aliases: CVE-2007-1355 GHSA-4c6x-gfc8-c26r |
CVE-2007-1355 tomcat XSS in samples |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-5p51-8u8j-aaaj
Aliases: CVE-2007-2450 GHSA-5c5p-jxvx-x7j2 |
CVE-2007-2450 tomcat host manager XSS |
Affected by 4 other vulnerabilities. Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-8ha5-3wkt-aaaa
Aliases: CVE-2007-5333 GHSA-cww4-vj5r-rx57 |
CVE-2007-5333 Improve cookie parsing for tomcat5 |
Affected by 4 other vulnerabilities. Affected by 4 other vulnerabilities. Affected by 3 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-8tsz-hrqv-aaar
Aliases: CVE-2007-3385 GHSA-6j8f-66vh-39mj |
CVE-2007-3385 tomcat handling of cookie values |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-e2fg-fd5a-aaan
Aliases: CVE-2007-3383 GHSA-wjwr-3jch-479j |
Cross-site scripting (XSS) vulnerability in SendMailServlet in the examples web application (examples/jsp/mail/sendmail.jsp) in Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.36 allows remote attackers to inject arbitrary web script or HTML via the From field and possibly other fields, related to generation of error messages. |
Affected by 4 other vulnerabilities. |
|
VCID-es7j-vwa1-aaar
Aliases: CVE-2007-5461 GHSA-v5p2-vg3c-pmrr |
CVE-2007-5461 Absolute path traversal Apache Tomcat WEBDAV |
Affected by 4 other vulnerabilities. Affected by 4 other vulnerabilities. Affected by 6 other vulnerabilities. |
|
VCID-npzp-axqb-aaaa
Aliases: CVE-2007-2449 GHSA-hc39-rjwp-qffq |
CVE-2007-2449 tomcat examples jsp XSS |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-qdyv-j5zf-aaaq
Aliases: CVE-2007-3382 GHSA-qff8-g48j-pwpw |
CVE-2007-3382 tomcat handling of cookies |
Affected by 4 other vulnerabilities. Affected by 0 other vulnerabilities. Affected by 2 other vulnerabilities. |
|
VCID-vyaw-vkvq-aaas
Aliases: CVE-2005-3164 GHSA-qhqv-q4xg-f6g7 |
The AJP connector in Apache Tomcat 4.0.1 through 4.0.6 and 4.1.0 through 4.1.36, as used in Hitachi Cosminexus Application Server and standalone, does not properly handle when a connection is broken before request body data is sent in a POST request, which can lead to an information leak when "unsuitable request body data" is used for a different request, possibly related to Java Servlet pages. |
Affected by 4 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-04-09T21:35:04.384391+00:00 | GHSA Importer | Affected by | VCID-8tsz-hrqv-aaar | https://github.com/advisories/GHSA-6j8f-66vh-39mj | 36.0.0 |
| 2025-03-28T13:19:39.968878+00:00 | Apache Tomcat Importer | Fixing | VCID-8mnn-61dd-aaaj | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.900889+00:00 | Apache Tomcat Importer | Fixing | VCID-8ev5-nn75-aaap | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.831924+00:00 | Apache Tomcat Importer | Fixing | VCID-chsg-486g-aaac | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.750645+00:00 | Apache Tomcat Importer | Affected by | VCID-es7j-vwa1-aaar | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.680146+00:00 | Apache Tomcat Importer | Affected by | VCID-8ha5-3wkt-aaaa | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.632768+00:00 | Apache Tomcat Importer | Affected by | VCID-8tsz-hrqv-aaar | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.584854+00:00 | Apache Tomcat Importer | Affected by | VCID-e2fg-fd5a-aaan | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.516945+00:00 | Apache Tomcat Importer | Affected by | VCID-qdyv-j5zf-aaaq | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.468945+00:00 | Apache Tomcat Importer | Affected by | VCID-5p51-8u8j-aaaj | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.400995+00:00 | Apache Tomcat Importer | Affected by | VCID-npzp-axqb-aaaa | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.328097+00:00 | Apache Tomcat Importer | Affected by | VCID-1bxb-dc7f-aaad | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2025-03-28T13:19:39.256806+00:00 | Apache Tomcat Importer | Affected by | VCID-vyaw-vkvq-aaas | https://tomcat.apache.org/security-4.html | 36.0.0 |
| 2024-09-18T08:17:49.827022+00:00 | Apache Tomcat Importer | Fixing | VCID-8mnn-61dd-aaaj | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.758876+00:00 | Apache Tomcat Importer | Fixing | VCID-8ev5-nn75-aaap | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.689773+00:00 | Apache Tomcat Importer | Fixing | VCID-chsg-486g-aaac | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.618216+00:00 | Apache Tomcat Importer | Affected by | VCID-es7j-vwa1-aaar | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.551431+00:00 | Apache Tomcat Importer | Affected by | VCID-8ha5-3wkt-aaaa | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.503270+00:00 | Apache Tomcat Importer | Affected by | VCID-8tsz-hrqv-aaar | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.455640+00:00 | Apache Tomcat Importer | Affected by | VCID-e2fg-fd5a-aaan | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.386851+00:00 | Apache Tomcat Importer | Affected by | VCID-qdyv-j5zf-aaaq | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.339187+00:00 | Apache Tomcat Importer | Affected by | VCID-5p51-8u8j-aaaj | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.272299+00:00 | Apache Tomcat Importer | Affected by | VCID-npzp-axqb-aaaa | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.203891+00:00 | Apache Tomcat Importer | Affected by | VCID-1bxb-dc7f-aaad | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-18T08:17:49.135114+00:00 | Apache Tomcat Importer | Affected by | VCID-vyaw-vkvq-aaas | https://tomcat.apache.org/security-4.html | 34.0.1 |
| 2024-09-17T22:36:53.493426+00:00 | GitLab Importer | Affected by | VCID-e2fg-fd5a-aaan | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2007-3383.yml | 34.0.1 |
| 2024-09-17T22:36:41.557275+00:00 | GitLab Importer | Affected by | VCID-vyaw-vkvq-aaas | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2005-3164.yml | 34.0.1 |
| 2024-09-17T22:36:31.553892+00:00 | GitLab Importer | Affected by | VCID-qdyv-j5zf-aaaq | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2007-3382.yml | 34.0.1 |
| 2024-09-17T22:36:29.686447+00:00 | GitLab Importer | Affected by | VCID-8tsz-hrqv-aaar | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2007-3385.yml | 34.0.1 |
| 2024-09-17T22:02:54.427058+00:00 | GHSA Importer | Affected by | VCID-vyaw-vkvq-aaas | https://github.com/advisories/GHSA-qhqv-q4xg-f6g7 | 34.0.1 |
| 2024-09-17T22:02:51.509118+00:00 | GHSA Importer | Affected by | VCID-e2fg-fd5a-aaan | https://github.com/advisories/GHSA-wjwr-3jch-479j | 34.0.1 |
| 2024-09-17T22:02:51.264638+00:00 | GHSA Importer | Affected by | VCID-8tsz-hrqv-aaar | https://github.com/advisories/GHSA-6j8f-66vh-39mj | 34.0.1 |
| 2024-09-17T22:02:50.969144+00:00 | GHSA Importer | Affected by | VCID-qdyv-j5zf-aaaq | https://github.com/advisories/GHSA-qff8-g48j-pwpw | 34.0.1 |
| 2024-09-17T22:00:56.310326+00:00 | GHSA Importer | Affected by | VCID-5p51-8u8j-aaaj | https://github.com/advisories/GHSA-5c5p-jxvx-x7j2 | 34.0.1 |
| 2024-04-23T17:39:59.499911+00:00 | GHSA Importer | Affected by | VCID-5p51-8u8j-aaaj | https://github.com/advisories/GHSA-5c5p-jxvx-x7j2 | 34.0.0rc4 |
| 2024-01-04T02:15:52.927420+00:00 | Apache Tomcat Importer | Fixing | VCID-8mnn-61dd-aaaj | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.859107+00:00 | Apache Tomcat Importer | Fixing | VCID-8ev5-nn75-aaap | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.786920+00:00 | Apache Tomcat Importer | Fixing | VCID-chsg-486g-aaac | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.712770+00:00 | Apache Tomcat Importer | Affected by | VCID-es7j-vwa1-aaar | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.646170+00:00 | Apache Tomcat Importer | Affected by | VCID-8ha5-3wkt-aaaa | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.597361+00:00 | Apache Tomcat Importer | Affected by | VCID-8tsz-hrqv-aaar | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.550399+00:00 | Apache Tomcat Importer | Affected by | VCID-e2fg-fd5a-aaan | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.484026+00:00 | Apache Tomcat Importer | Affected by | VCID-qdyv-j5zf-aaaq | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.434889+00:00 | Apache Tomcat Importer | Affected by | VCID-5p51-8u8j-aaaj | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.365444+00:00 | Apache Tomcat Importer | Affected by | VCID-npzp-axqb-aaaa | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.298698+00:00 | Apache Tomcat Importer | Affected by | VCID-1bxb-dc7f-aaad | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-04T02:15:52.232149+00:00 | Apache Tomcat Importer | Affected by | VCID-vyaw-vkvq-aaas | https://tomcat.apache.org/security-4.html | 34.0.0rc1 |
| 2024-01-03T17:59:57.262044+00:00 | GitLab Importer | Affected by | VCID-e2fg-fd5a-aaan | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2007-3383.yml | 34.0.0rc1 |
| 2024-01-03T17:59:45.379467+00:00 | GitLab Importer | Affected by | VCID-vyaw-vkvq-aaas | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2005-3164.yml | 34.0.0rc1 |
| 2024-01-03T17:59:36.406094+00:00 | GitLab Importer | Affected by | VCID-qdyv-j5zf-aaaq | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2007-3382.yml | 34.0.0rc1 |
| 2024-01-03T17:59:34.841211+00:00 | GitLab Importer | Affected by | VCID-8tsz-hrqv-aaar | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2007-3385.yml | 34.0.0rc1 |
| 2024-01-03T17:37:42.773551+00:00 | GHSA Importer | Affected by | VCID-vyaw-vkvq-aaas | https://github.com/advisories/GHSA-qhqv-q4xg-f6g7 | 34.0.0rc1 |
| 2024-01-03T17:37:39.755765+00:00 | GHSA Importer | Affected by | VCID-e2fg-fd5a-aaan | https://github.com/advisories/GHSA-wjwr-3jch-479j | 34.0.0rc1 |
| 2024-01-03T17:37:39.504520+00:00 | GHSA Importer | Affected by | VCID-8tsz-hrqv-aaar | https://github.com/advisories/GHSA-6j8f-66vh-39mj | 34.0.0rc1 |
| 2024-01-03T17:37:39.185770+00:00 | GHSA Importer | Affected by | VCID-qdyv-j5zf-aaaq | https://github.com/advisories/GHSA-qff8-g48j-pwpw | 34.0.0rc1 |