CVE-2014-0094 (struts)
-
The ParametersInterceptor in Apache Struts before 2.3.16.1 allows remote attackers to "manipulate" the ClassLoader via the class parameter, which is passed to the getClass method.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0094
© Lightnetics 2024