com.github.a-pz:struts2-thymeleaf3-plugin (>=1.0.3-RELEASE <=1.0.5-RELEASE), com.jgeppert.struts2.bootstrap:struts2-bootstrap-plugin (=2.5.1) +73 more potentially affected by CVE-2017-9804 +1 more via org.apache.struts:struts2-core (>=2.5.1 <=2.5.12)

org.apache.struts:struts2-core MAVEN version =2.5.1, =1.0.3-RELEASE, =0.9.4, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.1, =2.5.12 - org.apache.struts:struts2-java8-support-plugin =2.5.1 and more Source cves: CVE-2017-9804, CVE-2017-9805 Source advisory:...

Security Bulletin: IBM OpenPages GRC Platform Web Applications are NOT vulnerable to (CVE-2017-9805 , CVE-2017-9804, CVE-2017-9793)

Summary IBM OpenPages GRC Platform Web Applications are NOT vulnerable to Apache Struts 2 vulnerabilities CVE-2017-9805 , CVE-2017-9804 and CVE-2017-9793 Vulnerability Details For more information on Struts 2 vulnerabilities, please consult Apache Security Bulletins CVE-2017-9805 , CVE-2017-9804...

Oracle WebLogic Server Multiple Vulnerabilities

Binary data oracleweblogicserverCVE-2017-9805.nbin...

CVE-2017-9804

CVE-2017-9805 affects Apache Struts 2 with the REST plugin that uses an XStreamHandler for XML deserialization without type filtering. The vulnerability allows remote code execution when processing crafted XML payloads. Affected versions are Apache Struts 2.x prior to 2.3.34 and 2.5.x prior to 2....

CVE-2017-9804

creationtimestamp| type| source ---|---|--- 2017-09-14 10:03:18+00:00| seen| https://t.me/informationsecuritychannel/8834...

Apache Struts DoS Vulnerability (S2-050) - Linux

Apache Struts is prone to a regular expression Denial of Service DoS vulnerability when using URLValidator. This VT has been deprecated and merged into the VT SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...