Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

org.apache.struts.xwork:xwork-core

maven

Apache Struts 2

View on github.com · View on repo1.maven.org

Security Advisories for org.apache.struts.xwork:xwork-core in maven

High
over 3 years ago

Apache Struts Open Redirect GSA_kwCzR0hTQS13bTh3LXFwMmYtNzI4cc4AAa4R

maven org.apache.struts.xwork:xwork-core
Moderate
over 3 years ago

Denial of service in Apache Struts GSA_kwCzR0hTQS1ocmdjLTU0bXYtNThnds4AAaDb

maven org.apache.struts.xwork:xwork-core
High
over 3 years ago

Incomplete exclude pattern in Apache Struts GSA_kwCzR0hTQS1xMmNnLXhmOXAtaDQ1N84AAYyu

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
High
over 3 years ago

Apache Struts CSRF Vulnerability GSA_kwCzR0hTQS0zOHF3LWo3ODctdjhjMs4AAYUX

maven org.apache.struts.xwork:xwork-core
Moderate
over 3 years ago

XWork in Apache Struts Reveals Sensitive Information GSA_kwCzR0hTQS05Y2NtLWczNjItMnIzNc4AAWMP

maven org.apache.struts.xwork:xwork-core
High
over 3 years ago

Arbitrary code execution in Apache Struts 2 GSA_kwCzR0hTQS1ncXFtLTU2NGYtdnZ4cc4AAUxj

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
High
over 3 years ago

Arbitrary code execution in Apache Struts 2 GSA_kwCzR0hTQS1wdzhyLXgycW0tM2g1bc4AAUxe

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
High
over 3 years ago

Arbitrary code execution in Apache Struts GSA_kwCzR0hTQS03Mzd3LW1oNTgtY3hqcM4AATQ_

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
Moderate
over 3 years ago

ClassLoader manipulation in Apache Struts GSA_kwCzR0hTQS12cndjLXFqbXctNXJqbc4AATRA

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
High
over 3 years ago

Code injection in Apache Struts GSA_kwCzR0hTQS03Z2htLXJwYzctcDdnNc34jQ

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
Moderate
over 3 years ago

Apache Struts's CookieInterceptor component does not use the parameter-name whitelist GSA_kwCzR0hTQS0ycHBwLXhqMzQtdnZmN83e3A

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
Critical
over 3 years ago

Apache Struts Remote Java Code Execution GSA_kwCzR0hTQS00d3JyLTloNXItbTkyd83e2w

maven org.apache.struts.xwork:xwork-core, org.apache.struts:struts2-core
Moderate
over 3 years ago

Apache Struts's ParameterInterceptor component does not prevent access to public constructors GSA_kwCzR0hTQS1oeHFxLXc0bXItbWM2Ms3e2A

maven org.apache.struts.xwork:xwork-core
Moderate
over 3 years ago

Apache Struts's DebuggingInterceptor component allows remote code execution in developer mode GSA_kwCzR0hTQS1obXZqLWdjOXEtbWc5cM3e3g

maven org.apache.struts.xwork:xwork-core

Filter by Severity

High 7 Moderate 6 Critical 1