Lucene search

K
osvGoogleOSV:GHSA-VQ79-MGPX-2WX4
HistoryMay 17, 2022 - 2:16 a.m.

Apache Struts Access Control Redirect

2022-05-1702:16:00
Google
osv.dev
15
apache struts
access control
remote attack
redirection
default method

EPSS

0.009

Percentile

82.9%

Apache Struts 2 2.3.20 through 2.3.28.1 allows remote attackers to bypass intended access restrictions and conduct redirection attacks by leveraging a default method.

EPSS

0.009

Percentile

82.9%