Merge pull request #5656 from projectdiscovery/false-positive
Update and rename misconfiguration/apache/apache-tomcat-snoop.yaml to…patch-1
commit
d6e52dcb48
|
@ -32,6 +32,7 @@ files:
|
|||
- cves/2020/CVE-2020-2036.yaml
|
||||
- cves/2020/CVE-2020-28351.yaml
|
||||
- cves/2021/CVE-2021-35265.yaml
|
||||
- cves/2007/CVE-2007-2449.yaml
|
||||
- vulnerabilities/generic/basic-xss-prober.yaml
|
||||
- vulnerabilities/oracle/oracle-ebs-xss.yaml
|
||||
- vulnerabilities/other/nginx-module-vts-xss.yaml
|
||||
|
|
|
@ -1,9 +1,9 @@
|
|||
id: apache-tomcat-snoop
|
||||
id: CVE-2007-2449
|
||||
|
||||
info:
|
||||
name: Apache Tomcat 4.x-7.x - Cross-Site Scripting
|
||||
author: pdteam
|
||||
severity: high
|
||||
severity: low
|
||||
description: Apache Tomcat 4.x through 7.x contains a cross-site scripting vulnerability which can be used by an attacker to execute arbitrary script in the browser of an unsuspecting user in the context of the affected site.
|
||||
reference:
|
||||
- https://www.rapid7.com/db/vulnerabilities/apache-tomcat-example-leaks
|
||||
|
@ -13,7 +13,7 @@ info:
|
|||
cwe-id: CWE-79
|
||||
metadata:
|
||||
shodan-query: title:"Apache Tomcat"
|
||||
tags: apache,misconfig,tomcat,disclosure
|
||||
tags: cve,cve2007,apache,misconfig,tomcat,disclosure,xss
|
||||
|
||||
requests:
|
||||
- method: GET
|
Loading…
Reference in New Issue