← CVECheck
HomeVulnerabilities

CVE-2002-0682 — HIGH severity vulnerability (Cross-site scripting vulnerability in Apache Tomcat 4.0.3 al)

Cross-site scripting vulnerability in Apache Tomcat 4.0.3 allows remote attackers to execute script as other web users via script in a URL with the /servlet/ mapping, which does not filter the script when an exception is thrown by the servlet.

CVE IDCVE-2002-0682
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-07-23
Last modified2026-04-16
DescriptionCross-site scripting vulnerability in Apache Tomcat 4.0.3 allows remote attackers to execute script as other web users via script in a URL with the /servlet/ mapping, which does not filter the script when an exception is thrown by the servlet.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →