Apache » Struts2-showcase : Security Vulnerabilities, CVEs,
Apache Struts Showcase App 2.0.0 through 2.3.13, as used in Struts 2 before 2.3.14.3, allows remote attackers to execute arbitrary OGNL code via a crafted parameter name that is not properly handled when invoking a redirect.
Max CVSS
9.3
EPSS Score
0.81%
Published
2013-07-10
Updated
2019-08-12
1 vulnerabilities found