Total vulnerabilities in the database
Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execute arbitrary code by uploading and accessing a JSP file.
| Software | From | Fixed in |
|---|---|---|
| apache / tomcat | 7.0.2-beta | 7.0.2-beta.x |
| apache / tomcat | 7.0.12 | 7.0.12.x |
| apache / tomcat | 7.0.20 | 7.0.20.x |
| apache / tomcat | 7.0.34 | 7.0.34.x |
| apache / tomcat | 7.0.1 | 7.0.1.x |
| apache / tomcat | 7.0.2 | 7.0.2.x |
| apache / tomcat | 7.0.4-beta | 7.0.4-beta.x |
| apache / tomcat | 7.0.22 | 7.0.22.x |
| apache / tomcat | 7.0.26 | 7.0.26.x |
| apache / tomcat | 7.0.28 | 7.0.28.x |
| apache / tomcat | 7.0.0 | 7.0.0.x |
| apache / tomcat | 7.0.18 | 7.0.18.x |
| apache / tomcat | 7.0.14 | 7.0.14.x |
| apache / tomcat | 7.0.11 | 7.0.11.x |
| apache / tomcat | 7.0.23 | 7.0.23.x |
| apache / tomcat | 7.0.0-beta | 7.0.0-beta.x |
| apache / tomcat | 7.0.37 | 7.0.37.x |
| apache / tomcat | 7.0.29 | 7.0.29.x |
| apache / tomcat | 7.0.13 | 7.0.13.x |
| apache / tomcat | 7.0.31 | 7.0.31.x |
| apache / tomcat | 7.0.30 | 7.0.30.x |
| apache / tomcat | 7.0.15 | 7.0.15.x |
| apache / tomcat | 7.0.19 | 7.0.19.x |
| apache / tomcat | 7.0.16 | 7.0.16.x |
| apache / tomcat | 7.0.10 | 7.0.10.x |
| apache / tomcat | 7.0.36 | 7.0.36.x |
| apache / tomcat | 7.0.25 | 7.0.25.x |
| apache / tomcat | 7.0.35 | 7.0.35.x |
| apache / tomcat | 7.0.32 | 7.0.32.x |
| apache / tomcat | 7.0.38 | 7.0.38.x |
| apache / tomcat | 7.0.21 | 7.0.21.x |
| apache / tomcat | 7.0.27 | 7.0.27.x |
| apache / tomcat | 7.0.24 | 7.0.24.x |
| apache / tomcat | 7.0.17 | 7.0.17.x |
| apache / tomcat | - | 7.0.39.x |
| apache / tomcat | 7.0.4 | 7.0.4.x |
| apache / tomcat | 7.0.3 | 7.0.3.x |
| apache / tomcat | 7.0.33 | 7.0.33.x |