Filter
AND
maven/org.apache.struts:struts2-coreApache Struts: File upload component had a directory traversal vulnerability
9.8
First published (updated )
maven/org.apache.struts:struts2-coreApache Struts: excessive disk usage
7.5
First published (updated )
Apache Struts 2Forced OGNL evaluation, when evaluated on raw not validated user input in tag attributes, may lead to RCE.
9.8
First published (updated )
Oracle Communications Diameter Intelligence HubApache Struts Remote Code Execution Vulnerability
First published (updated )
oracle financial services data integration hubAn access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when pe…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
oracle financial services data integration hubApache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag…
9.8
First published (updated )
maven/org.apache.struts:struts2-coreCode Injection
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache Struts 2Apache Struts 2 before 2.3.29 and 2.5.x before 2.5.1 allow attackers to have unspecified impact via …
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.apache.struts:struts2-coreInput Validation
First published (updated )
Apache Struts 2CookieInterceptor in Apache Struts 2.x before 2.3.20, when a wildcard cookiesName value is used, doe…
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache Struts 2CookieInterceptor in Apache Struts before 2.3.20, when a wildcard cookiesName value is used, does no…
7.5
First published (updated )
maven/org.apache.struts:struts2-coreParametersInterceptor in Apache Struts before 2.3.20 does not properly restrict access to the getCla…
7.5
First published (updated )
redhat/StrutsThe ParametersInterceptor in Apache Struts before 2.3.16.2 allows remote attackers to "manipulate" t…
First published (updated )
Apache Struts 2Apache Struts 2.0.0 through 2.3.15.1 allows remote attackers to bypass access controls via a crafted…
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache Struts 2Apache Struts Improper Input Validation Vulnerability
First published (updated )
maven/org.apache.struts.xwork:xwork-coreCode Injection
9.3
First published (updated )
maven/org.apache.struts.xwork:xwork-coreCode Injection
9.3
First published (updated )
maven/org.apache.struts.xwork:xwork-coreCode Injection, XSS
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.