Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you may not be able to execute some actions.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

CVE-2012-0391 (struts)

maltiger last edited by

The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL expressions during certain exception handling for mismatched data types of properties, which allows remote attackers to execute arbitrary Java code via a crafted parameter.

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-0391
Reply Quote
1 Reply Last reply

1
Posts

61
Views

Log in to reply

© Lightnetics 2024

1 / 1