Lucene search
MitreCVELIST:CVE-2012-1007HistoryFeb 07, 2012 - 2:00 a.m.
CVE-2012-1007
2012-02-0702:00:00
mitre
www.cve.org
1
Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 1.3.10 allow remote attackers to inject arbitrary web script or HTML via (1) the name parameter to struts-examples/upload/upload-submit.do, or the message parameter to (2) struts-cookbook/processSimple.do or (3) struts-cookbook/processDyna.do.
References
secpod.org/advisories/SecPod_Apache_Struts_Multiple_Parsistant_XSS_Vulns.txt
secpod.org/blog/?p=450
www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html
www.securityfocus.com/bid/51900
exchange.xforce.ibmcloud.com/vulnerabilities/73052
Related
prion
prion
Cross site scripting
2012-02-07 04:09:00
nessus
nessus
Apache Struts struts-cookbook processSimple.do message Parameter XSS
2012-07-23 00:00:00
Apache Struts struts-examples upload-submit.do 'theText' Parameter XSS
2012-07-23 00:00:00
openvas
openvas
Apache Struts <= 1.3.10 CookBook/Examples Multiple XSS Vulnerabilities
2012-02-08 00:00:00
osv
osv
Apache Struts XSS
2022-05-14 02:21:24
nvd
nvd
CVE-2012-1007
2012-02-07 04:09:20
cve
cve
CVE-2012-1007
2012-02-07 04:09:20
github
github
Apache Struts XSS
2022-05-14 02:21:24
ubuntucve
ubuntucve
CVE-2012-1007
2012-02-07 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in Apache Struts and Apache Commons that is used by WebSphere Application Server UDDI shipped with Tivoli Integrated Portal
2018-11-28 11:50:02
oracle
oracle
Oracle Critical Patch Update - October 2016
2016-10-18 00:00:00
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00
Oracle Critical Patch Update Advisory - April 2017
2017-04-18 00:00:00