logo
DATABASE RESOURCES PRICING ABOUT US

Apache Struts 2 REST Plugin XStream RCE

Description

Apache Struts versions 2.1.2 - 2.3.33 and Struts 2.5 - Struts 2.5.12, using the REST plugin, are vulnerable to a Java deserialization attack in the XStream library.


Related