VDB
CVE-2001-0829
CVE-2001-0829
PUBLISHED
CVSS 5.099999904632568 MEDIUM
A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.
EPSS 0.99% · 77.3th percentile
Risk Scores
CVSS 2.0
5.099999904632568
EPSS Score
0.99%
77.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| Maven | org.apache.tomcat:tomcat | 0 |
| apache | tomcat | 3.2.1 |
Timeline
- Nov 22, 2001 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 26, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- http://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme url
- 20010702 Multiple Vendor Java Servlet Container Cross-Site Scripting Vulnerability mailing-list
- 2982 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2001-0829 advisory
- https://web.archive.org/web/20021108153830/http://online.securityfocus.com/bid/2982 url
- https://web.archive.org/web/20021201182720/http://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme url
- https://web.archive.org/web/20061208015126/http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html url