A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.
{ "github_reviewed_at": "2023-09-18T22:35:47Z", "severity": "MODERATE", "cwe_ids": [ "CWE-80" ], "github_reviewed": true, "nvd_published_at": "2001-12-06T05:00:00Z" }