CVE-2006-7196

Apache Tomcat 4.0.0-4.1.31 - Cross-Site Scripting via Calendar Time Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-7196. PoCs published by Tushar Vartak.

AI-analyzed exploit summary This is a writeup describing a cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1.31. The vulnerability arises from insufficient input sanitization, allowing arbitrary script execution in the context of the affected site.

Description

Cross-site scripting (XSS) vulnerability in the calendar application example in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.15 allows remote attackers to inject arbitrary web script or HTML via the time parameter to cal2.jsp and possibly unspecified other vectors. NOTE: this may be related to CVE-2006-0254.1.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Tushar Vartak · textwebappsjsp
https://www.exploit-db.com/exploits/30563

This is a writeup describing a cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1.31. The vulnerability arises from insufficient input sanitization, allowing arbitrary script execution in the context of the affected site.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Apache Tomcat 4.1.31
No auth needed
Prerequisites: A vulnerable version of Apache Tomcat · User interaction to trigger the XSS payload
MITRE ATT&CK
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (20)

Core 20
Core References
Various Sources x_refsource_confirm
http://tomcat.apache.org/security-4.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/34888
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29242
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/500412/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/33668
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/500396/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25531
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1729
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2009/0233
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/478491/100/0/threaded
Various Sources x_refsource_confirm
http://tomcat.apache.org/security-5.html
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2008-0261.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/478609/100/0/threaded

Scores

EPSS 0.7217
EPSS Percentile 99.4%

Details

CWE
CWE-79
Status published
Products (50)
apache/tomcat 4.0.0
apache/tomcat 4.0.1
apache/tomcat 4.0.2
apache/tomcat 4.0.3
apache/tomcat 4.0.4
apache/tomcat 4.0.5
apache/tomcat 4.0.6
apache/tomcat 5.0.0
apache/tomcat 5.0.1
apache/tomcat 5.0.2
... and 40 more
Published May 10, 2007
Tracked Since Feb 18, 2026