logo
DATABASE RESOURCES PRICING ABOUT US

Apache Struts 2.x < 2.5.26 RCE (S2-061) (direct check)

Description

The version of Apache Struts installed on the remote host is 2.x prior to 2.5.26. It is, therefore, affected by a a remote code execution vulnerability in its OGNL evaluation functionality due to insufficient validation of user input. An unauthenticated, remote attacker can exploit this to execute arbitrary commands on an affected host.


Related