Hello,I am using Tomcat 6.0.18 and have hit XSS issue, where in tweaked Host header containing XSS is processed by the server. I suppose some validation check should be done on the Host value to prevent such an attack.
Appreciate any inputs are to whether this issue has been fixed ?. regards Pankaj --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
