CVE-2019-0230

2020-09-14T17:15:00
ID CVE-2019-0230
Type cve
Reporter security@apache.org
Modified 2022-04-18T15:23:00

Description

Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution.