VulnerableCode Package Details - pkg:apache/tomcat@5.5.26

Search for packages

Vulnerability	Summary	Fixed by
VCID-22we-qr8x-aaad Aliases: CVE-2008-2370 GHSA-m8h8-6rvg-f4mg	CVE-2008-2370 tomcat RequestDispatcher information disclosure vulnerability	5.5.27 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.18 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-nwsx-6pj2-aaap Aliases: CVE-2008-1947 GHSA-f98p-9pp6-7q6c	CVE-2008-1947 Tomcat host manager xss - name field	5.5.27 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.18 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-w2az-ahw2-aaah Aliases: CVE-2008-1232 GHSA-q74x-qqhr-f8rx	CVE-2008-1232 tomcat: Cross-Site-Scripting enabled by sendError call	5.5.27 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.18 Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-22we-qr8x-aaad
Aliases:
CVE-2008-2370
GHSA-m8h8-6rvg-f4mg

CVE-2008-2370 tomcat RequestDispatcher information disclosure vulnerability

5.5.27
Affected by 5 other vulnerabilities.

6.0.18
Affected by 5 other vulnerabilities.

VCID-nwsx-6pj2-aaap
Aliases:
CVE-2008-1947
GHSA-f98p-9pp6-7q6c

CVE-2008-1947 Tomcat host manager xss - name field

5.5.27
Affected by 5 other vulnerabilities.

6.0.18
Affected by 5 other vulnerabilities.

VCID-w2az-ahw2-aaah
Aliases:
CVE-2008-1232
GHSA-q74x-qqhr-f8rx

CVE-2008-1232 tomcat: Cross-Site-Scripting enabled by sendError call

5.5.27
Affected by 5 other vulnerabilities.

6.0.18
Affected by 5 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-8ha5-3wkt-aaaa	CVE-2007-5333 Improve cookie parsing for tomcat5	CVE-2007-5333 GHSA-cww4-vj5r-rx57
VCID-es7j-vwa1-aaar	CVE-2007-5461 Absolute path traversal Apache Tomcat WEBDAV	CVE-2007-5461 GHSA-v5p2-vg3c-pmrr
VCID-u6sk-57c8-aaah	CVE-2007-6286 Tomcat5 Data integrity	CVE-2007-6286 GHSA-qrj4-rmqg-4hcp
VCID-xtxt-x8g1-aaan	CVE-2007-5342 Apache Tomcat's default security policy is too open	CVE-2007-5342 GHSA-w65j-cmqc-37p2

Vulnerability

Summary

Aliases

VCID-8ha5-3wkt-aaaa

CVE-2007-5333 Improve cookie parsing for tomcat5

CVE-2007-5333
GHSA-cww4-vj5r-rx57

VCID-es7j-vwa1-aaar

CVE-2007-5461 Absolute path traversal Apache Tomcat WEBDAV

CVE-2007-5461
GHSA-v5p2-vg3c-pmrr

VCID-u6sk-57c8-aaah

CVE-2007-6286 Tomcat5 Data integrity

CVE-2007-6286
GHSA-qrj4-rmqg-4hcp

VCID-xtxt-x8g1-aaan

CVE-2007-5342 Apache Tomcat's default security policy is too open

CVE-2007-5342
GHSA-w65j-cmqc-37p2

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T13:19:37.499118+00:00	Apache Tomcat Importer	Fixing	VCID-u6sk-57c8-aaah	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.450144+00:00	Apache Tomcat Importer	Fixing	VCID-es7j-vwa1-aaar	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.398340+00:00	Apache Tomcat Importer	Fixing	VCID-xtxt-x8g1-aaan	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.346226+00:00	Apache Tomcat Importer	Fixing	VCID-8ha5-3wkt-aaaa	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.291956+00:00	Apache Tomcat Importer	Affected by	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.240659+00:00	Apache Tomcat Importer	Affected by	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-5.html	36.0.0
2025-03-28T13:19:37.188779+00:00	Apache Tomcat Importer	Affected by	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-5.html	36.0.0
2024-09-18T08:17:47.427759+00:00	Apache Tomcat Importer	Fixing	VCID-u6sk-57c8-aaah	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.379523+00:00	Apache Tomcat Importer	Fixing	VCID-es7j-vwa1-aaar	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.331134+00:00	Apache Tomcat Importer	Fixing	VCID-xtxt-x8g1-aaan	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.280132+00:00	Apache Tomcat Importer	Fixing	VCID-8ha5-3wkt-aaaa	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.222174+00:00	Apache Tomcat Importer	Affected by	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.170601+00:00	Apache Tomcat Importer	Affected by	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-5.html	34.0.1
2024-09-18T08:17:47.117598+00:00	Apache Tomcat Importer	Affected by	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-5.html	34.0.1
2024-01-04T02:15:50.533269+00:00	Apache Tomcat Importer	Fixing	VCID-u6sk-57c8-aaah	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.486374+00:00	Apache Tomcat Importer	Fixing	VCID-es7j-vwa1-aaar	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.436403+00:00	Apache Tomcat Importer	Fixing	VCID-xtxt-x8g1-aaan	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.387379+00:00	Apache Tomcat Importer	Fixing	VCID-8ha5-3wkt-aaaa	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.332803+00:00	Apache Tomcat Importer	Affected by	VCID-22we-qr8x-aaad	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.281005+00:00	Apache Tomcat Importer	Affected by	VCID-nwsx-6pj2-aaap	https://tomcat.apache.org/security-5.html	34.0.0rc1
2024-01-04T02:15:50.226489+00:00	Apache Tomcat Importer	Affected by	VCID-w2az-ahw2-aaah	https://tomcat.apache.org/security-5.html	34.0.0rc1