Skip to main content
Information Security

Questions tagged [tomcat]

Ask Question

The tag has no summary.

53 questions
Newest Active Bountied Unanswered
0 votes
2 answers
206 views

Session token shown in the log file

I'm working on a JAVA web application running on Tomcat. A session token is generated and stored in a cookie when a user authenticates. Unfortunately, when tracing is enabled, Tomcat dumps the value ...
Algiz's user avatar
Algiz
  • 111
1 vote
2 answers
158 views

Does windows security mean from the outside or from the inside?

I had Eclipse and Tomcat installed and when I started it up, the window security asked me the following question: Translation: Do you want to allow public and private networks to access this app? ...
Matthias Ronge's user avatar
Matthias Ronge
  • 135
1 vote
1 answer
97 views

can a tomcat application sitting behind a reverse proxy be exploited

I am trying to exploit a vulnerability in tomcat based on CVE-2020-13935. I found online this interesting poc https://blog.redteam-pentesting.de/2020/websocket-vulnerability-tomcat/ In my case, the ...
anonymous's user avatar
anonymous
  • 559
0 votes
0 answers
324 views

How to reproduce Tomcat 9.0.0.M1 HTTP smuggling vulnerabilities?

I'm trying to reproduce some of the Tomcat 9.x.x vulnerabilities from this list, in particular the HTTP smuggling vulnerabilities. However, so far I haven't been able to reproduce any of them. ...
Franklin Pezzuti Dyer's user avatar
Franklin Pezzuti Dyer
  • 101
1 vote
0 answers
2k views

Disabling weak cipher suites in Tomcat does not work as expected

I have to get rid of so called "weak security" in a Tomcat application. A penetration test identified services that accept connections with insecure TLS encryption and hashing algorithms: ...
MichaelW's user avatar
MichaelW
  • 161
0 votes
0 answers
421 views

cmd.jsp - Tomcat - Understanding HTTP Status Code (302)

I'm currently playing with cmd.jsp webshells on a Java webapp in tomcat. This is the request (sending via burpsuite) PUT /path/cmd.jsp HTTP/1.1 Host: 69.69.69.69 Content-Length: 579 <%@ page ...
citrusbytez's user avatar
citrusbytez
  • 1
1 vote
1 answer
293 views

spring4shell correction in tomcat

We use Tomcat, and version Tomcat 9.0.62 is supposed to fix the spring4shell vuln. To what extent is it the case? Are we safe not to upgrade to the latest Spring version?
veronicam's user avatar
veronicam
  • 11
1 vote
1 answer
483 views

Encryption with Tomcat & Nginx reverse proxy

I'm working with Tomcat and nginx as a reverse proxy and I'm trying to have a better understanding of how the traffic flows and of what the security issues are. Picture this as what I have in mind: ...
SilentSib's user avatar
SilentSib
  • 11
3 votes
0 answers
5k views

Path normalization issue with semicolon in Tomcat

I have observed a path normalization issue in the tomcat when i was passing "..;" in the URL. I tested this out with Nginx and Apache-tomcat-10.0.0-M4. I was able to access file directories which are ...
surethiv's user avatar
surethiv
  • 31
1 vote
1 answer
5k views

What measures can be taken to prevent Server Side Request Forgery (SSRF) in a JAX-RS Application running on Apache Tomcat?

If I have a an application server that uses an implementation of JAX-RS, and is running as *.war file on an Apache Tomcat server, is there anything special that needs to be done or configured to ...
iraleigh's user avatar
iraleigh
  • 326
0 votes
0 answers
955 views

Vulnerable Apache Tomcat server

I am a bug bounty hunter. When doing some research, I found a subdomain that is using Apache Tomcat. Talk about Tomcat, there was a vulnerability found in 2017: CVE-2017-12617. Any Apache Tomcat ...
user232075's user avatar
user232075
  • 1
0 votes
1 answer
436 views

Security headers in application vs. Tomcat default 40x error

I would like to assess the actual risk for various CORS attacks when a web application properly sets CSP and other response headers, but the app server error page does not. When a 40x can be provoked ...
Brezelbub's user avatar
Brezelbub
  • 121
1 vote
2 answers
487 views

Does Apache Tomcat 9 meet PCI compliance?

Does Apache Tomcat 9 meet PCI compliance? From where I should start reading and gather some information about that topic?
John's user avatar
John
  • 11
0 votes
1 answer
480 views

How apache tomcat favicon can be malicious or cause unintended results in application?

At the moment, there aren't any of those vulnerabilities that we know. I was looking the docs on what damages can be done by hackers if apache tomcat favicon is revealed in web application.
Ajay Takur's user avatar
Ajay Takur
  • 101
3 votes
1 answer
536 views

Is Tomcat vulnerable to "Ghostcat" (CVE-2020-1938) via mod_proxy_ajp?

Is it possible to exploit the "Ghostcat" vulnerability (CNVD-2020-10487/CVE-2020-1938) indirectly over mod_proxy_ajp? I was able to successfully test the proof-of-concept exploit (https://www....
ansichart's user avatar
ansichart
  • 797

15 30 50 per page
1
2 3 4