Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2012-0394

🗓️ 08 Jan 2012 15:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 187 Views🌐 WEB

Apache Struts DebuggingInterceptor component remote code execution CVE-2012-039

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today		Apache Struts Developer Mode OGNL Execution Exploit
4 Feb 201400:00
zdt
IBM Security Bulletins		Security Bulletin: Order Management could be subject to multiple cross-site scripting (XSS) vulnerabilities in XWork in Apache Struts 2.x.
12 Apr 202417:35
ibm
Circl		CVE-2012-0394
6 Jan 201200:00
circl
Check Point Advisories		Apache Struts Debugging Interceptor Remote Code Execution (CVE-2012-0394)
17 Feb 201400:00
checkpoint_advisories
Cvelist		CVE-2012-0394
8 Jan 201215:00
cvelist
Dsquare		Apache-Struts ExceptionDelegator < 2.3.1.1 RCE Linux
24 Mar 201200:00
dsquare
Dsquare		Apache-Struts DebuggingInterceptor < 2.3.1.1 RCE Windows
24 Mar 201200:00
dsquare
Dsquare		Apache-Struts DebuggingInterceptor < 2.3.1.1 RCE Linux
24 Mar 201200:00
dsquare
Exploit DB		Apache Struts - Developer Mode OGNL Execution (Metasploit)
5 Feb 201400:00
exploitdb
F5 Networks		K25570584: Apache Struts vulnerability CVE-2012-0394
21 Feb 202319:50
f5
Rows per page
NVD
Node
apachestrutsRange2.0.02.3.17
ParameterPositionPathDescriptionCWE
debugquery param/struts2-blank/example/HelloWorld.actionOGNL evaluation/execution vulnerability in Struts 2 developer mode via DebuggingInterceptor allowing remote command executionCWE-94
expressionquery param/struts2-blank/example/HelloWorld.actionOGNL evaluation/execution vulnerability in Struts 2 developer mode via DebuggingInterceptor allowing remote command executionCWE-94

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
29 Apr 2026 01:13Current
9.2High risk
Vulners AI Score9.2
CVSS 26.8
EPSS0.93572
CWE-94
apachestrutsdebugginginterceptorremote code executioncve-2012-0394security vulnerability
187