Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2549 matches found

Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.2 views

PT-2026-1143

CVE-2025-22155 - Apache Struts Remote Code Execution Vulnerability CVE ID : CVE-2025-22155 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0....

7.5AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.2 views

PT-2026-1157

CVE-2025-22191 - Apache Struts Cross-Site Scripting CVE ID : CVE-2025-22191 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0.0 | NA Visit th...

6.9AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.4 views

PT-2026-1153

CVE-2025-22187 - Apache Struts Cross-Site Scripting XSS CVE ID : CVE-2025-22187 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0.0 | NA Visi...

6.3AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.2 views

PT-2026-1150

CVE-2025-22186 - Apache Struts Remote Code Execution Vulnerability CVE ID : CVE-2025-22186 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0....

7.5AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.2 views

PT-2026-1147

CVE-2025-22183 - Apache Struts Deserialization Remote Code Execution CVE ID : CVE-2025-22183 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity:...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.3 views

PT-2026-1162

CVE-2025-22196 - Apache Struts Remote Code Execution Vulnerability CVE ID : CVE-2025-22196 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0....

7.5AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.2 views

PT-2026-1169

CVE-2025-22203 - Apache Struts Code Injection Vulnerability CVE ID : CVE-2025-22203 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0.0 | NA...

7.4AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.3 views

PT-2026-1163

CVE-2025-22197 - Apache Struts Remote Code Execution Vulnerability CVE ID : CVE-2025-22197 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0....

7.5AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.1 views

PT-2026-1161

CVE-2025-22195 - Apache Struts Command Injection Vulnerability CVE ID : CVE-2025-22195 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0.0 | ...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.4 views

PT-2026-1164

CVE-2025-22198 - Apache Struts Deserialization Remote Code Execution CVE ID : CVE-2025-22198 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity:...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.3 views

PT-2026-1165

CVE-2025-22199 - Apache Struts Remote Code Execution Vulnerability CVE ID : CVE-2025-22199 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0....

7.5AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/01/01 12:0 a.m.3 views

PT-2026-1154

CVE-2025-22188 - Apache Struts Deserialization Vulnerability CVE ID : CVE-2025-22188 Published : Jan. 1, 2026, 1:15 a.m. | 3 hours, 5 minutes ago Description : Rejected reason: To maintain compliance with CNA rules, we have rejected this CVE record because it has not been used. Severity: 0.0 | NA...

7AI score
Exploits0References1
F5 Networks
F5 Networksadded 2025/12/31 6:25 a.m.7 views

K000158954: Apache Struts vulnerability CVE-2025-64775

Security Advisory Description Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion. This issue affects Apache Struts: from 2.0.0 through 6.7.0, from 7.0.0 through 7.0.3. Users are recommended to upgrade to version 6.8.0 or 7.1.1, which...

7.5CVSS6.9AI score0.01431EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2025/12/26 12:0 a.m.2 views

PT-2025-53621

CVE-2025-14820 - CVE-2019-15666: Apache Struts XML Entity Injection Vulnerability CVE ID : CVE-2025-14820 Published : Dec. 25, 2025, 11:15 p.m. | 2 hours, 10 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Severity: 0.0 | NA...

4.9CVSS7AI score0.0173EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/23 12:0 a.m.2 views

PT-2025-53399

CVE-2024-10398 - Apache Struts Deserialization RCE CVE ID : CVE-2024-10398 Published : Dec. 23, 2025, 4:16 p.m. | 2 hours, 43 minutes ago Description : Rejected reason: This CVE id was assigned but later discarded. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected...

6.7AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/23 12:0 a.m.3 views

PT-2025-52879

CVE-2025-68655 - Apache Apache Struts Remote Code Execution CVE ID : CVE-2025-68655 Published : Dec. 23, 2025, 4:15 a.m. | 2 hours, 43 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...

7.3AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/21 12:0 a.m.2 views

PT-2025-52648

CVE-2025-14597 - Apache Struts SSRF CVE ID : CVE-2025-14597 Published : Dec. 20, 2025, 11:15 p.m. | 3 hours, 20 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Severity: 0.0 | NA Visit the link for more details, such as CVSS...

6AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/21 12:0 a.m.1 views

PT-2025-52647

CVE-2025-12700 - Apache Struts Remote Code Execution CVE ID : CVE-2025-12700 Published : Dec. 20, 2025, 11:15 p.m. | 3 hours, 20 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Severity: 0.0 | NA Visit the link for more details...

6.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/12/21 12:0 a.m.7 views

Apache Struts 2.0.0 < 2.3.18 multiple vulnerabilities - Remote command execution and arbitrary file overwrite, Strict DMI does not work correctly(S2-008)

The version of Apache Struts installed on the remote host is prior to 2.3.18. It is, therefore, affected by multiple vulnerabilities as referenced in the S2-008 advisory. - The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL expressions during...

9.8CVSS9.2AI score0.96787EPSS
Exploits22References5
Positive Technologies
Positive Technologiesadded 2025/12/19 12:0 a.m.10 views

PT-2026-1915

Name of the Vulnerable Software and Affected Versions Apache Struts versions 2.0.0 through 6.1.0 Description The issue is a missing XML validation check in Apache Struts, allowing for XML External Entity XXE attacks. This flaw resides in the XWork component and can be exploited by attackers to re...

9.4CVSS6AI score0.22475EPSS
Exploits1References43
Rows per page
Query Builder