Filter
AND
Versions
2.3.20
9
2.3.20.1
8
2.3.24.3
7
2.3.28
7
1.2.8
6
2.3.12
6
2.3.14
6
2.3.14.1
6
2.3.14.2
6
2.3.14.3
6
2.3.15
6
2.3.15.1
6
2.3.15.2
6
2.3.15.3
6
2.3.16
6
2.3.16.1
6
2.3.16.2
6
2.3.16.3
6
2.3.24
6
2.3.7
6
2.3.8
6
1.2.7
5
2.0.0
5
2.3.10
5
2.3.11
5
2.3.13
5
2.3.17
5
2.3.19
5
2.3.20.3
5
2.3.24.1
5
2.3.28.1
5
2.3.9
5
1.0
4
1.0.2
4
1.1
4
1.1-b1
4
1.1-b2
4
1.1-b3
4
1.1-rc1
4
1.1-rc2
4
1.2.2
4
1.2.4
4
1.2.6
4
1.2.9
4
1.3.10
4
1.3.5
4
1.3.8
4
2.3.20.2
4
2.3.21
4
2.3.22
4
2.3.23
4
2.3.29
4
2.3.30
4
2.3.31
4
2.3.32
4
2.5.1
4
2.5.10
4
2.5.10.1
4
2.5.2
4
2.5.3
4
2.5.4
4
2.5.5
4
2.5.6
4
2.5.7
4
2.5.8
4
2.5.9
4
2.1.1
3
2.1.2
3
2.1.3
3
2.1.4
3
2.1.5
3
2.1.6
3
2.1.8
3
2.1.8.1
3
2.2.1
3
2.2.1.1
3
2.2.3
3
2.2.3.1
3
2.3.1
3
2.3.1.1
3
2.3.1.2
3
2.3.24.2
3
2.3.25
3
2.3.26
3
2.3.27
3
2.3.3
3
2.3.33
3
2.3.4
3
2.3.4.1
3
2.5
3
2.5.12
3
1.0-beta1
2
1.0-beta2
2
1.0-beta3
2
1.0.1
2
1.2.0
2
1.2.1
2
1.2.3
2
1.2.5
2
1.3.6
2
1.3.7
2
1.3.9
2
2.0.1
2
2.0.10
2
2.0.11
2
2.0.11.1
2
2.0.11.2
2
2.0.12
2
2.0.13
2
2.0.14
2
2.0.2
2
2.0.3
2
2.0.4
2
2.0.5
2
2.0.6
2
2.0.7
2
2.0.8
2
2.0.9
2
2.1.0
2
2.3.5
2
2.3.6
2
2.5-beta1
2
2.5-beta2
2
2.5-beta3
2
6.0.0
2
2.1.7
1
2.5.0
1
2.5.11
1
2.5.14.1
1
2.5.20
1
6.1.2.1
1
Apache StrutsApache Struts Deserialization of Untrusted Data Vulnerability
First published (updated )
Apache StrutsApache Struts 1 ActionForm Denial-of-Service Vulnerability
First published (updated )
Apache StrutsApache Struts: DoS via OOM owing to no sanity limit on normal form fields in multipart forms
7.5
First published (updated )
Apache StrutsApache Struts: DoS via OOM owing to not properly checking of list bounds
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache StrutsApache Software Foundation (ASF) Struts before 1.2.9 allows remote attackers to bypass validation vi…
7.5
First published (updated )
Apache StrutsCookieInterceptor in Apache Struts before 2.3.20, when a wildcard cookiesName value is used, does no…
7.5
First published (updated )
redhat/StrutsParametersInterceptor in Apache Struts before 2.3.20 does not properly restrict access to the getCla…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache StrutsActionServlet.java in Apache Struts 1 1.x through 1.3.10 mishandles multithreaded access to an Actio…
8.1
First published (updated )
Apache StrutsWhen using a Spring AOP functionality to secure Struts actions it is possible to perform a DoS attac…
7.5
First published (updated )
Oracle Financial Services Data Integration HubAn access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when pe…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.apache.struts:struts2-coreApache Struts: excessive disk usage
7.5
First published (updated )
maven/org.apache.struts:struts2-rest-pluginThe Apache Struts REST Plugin is using XStream library which is vulnerable and allow perform a DoS a…
7.5
First published (updated )
Apache StrutsThe default exclude patterns (excludeParams) in Apache Struts 2.3.20 allow remote attackers to "comp…
7.5
First published (updated )