CVE-2015-0249

2017-07-17T13:18:00
ID CVE-2015-0249
Type cve
Reporter cve@mitre.org
Modified 2017-07-27T17:41:00

Description

The weblog page template in Apache Roller 5.1 through 5.1.1 allows remote authenticated users with admin privileges for a weblog to execute arbitrary Java code via crafted Velocity Text Language (aka VTL).