Description
Cross-site request forgery (CSRF) vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add events as arbitrary users via the time and description parameters.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-3911 | Cross-site request forgery (CSRF) vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add events as arbitrary users via the time and description parameters. |
Github GHSA |
GHSA-g77g-vjjm-x83j | Apache Tomcat Example Application CSRF and XSS Vulnerabilities |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-07T15:08:33.318Z
Reserved: 2007-09-05T00:00:00.000Z
Link: CVE-2007-4724
No data.
Status : Modified
Published: 2007-09-05T19:17:00.000
Modified: 2026-06-16T22:44:39.490
Link: CVE-2007-4724
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-352
Cross-Site Request Forgery (CSRF)
EUVD
Github GHSA