Apache Struts Convention Plugin Path Traversal Vulnerability
Struts2 is an extensible framework for building enterprise-class Jave Web applications. Struts 2.3.20 - 2.3.31 has a path traversal vulnerability in the Convention plugin, which can be exploited by an attacker to conduct path traversal and code execution attacks on the server side via a construct...