1986 matches found
PT-2025-17995 · Apache · Apache Struts
Name of the Vulnerable Software and Affected Versions: Apache Struts affected versions not specified Description: The issue is related to a deserialization vulnerability. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where...
PT-2025-17366 · Apache · Apache Struts
Name of the Vulnerable Software and Affected Versions: Apache Struts affected versions not specified Description: The issue concerns a command injection problem. No specific details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was...
PT-2025-17362 · Apache · Apache Struts
Name of the Vulnerable Software and Affected Versions: Apache Struts affected versions not specified Description: The issue is related to command injection in Apache Struts. No specific details about the estimated number of potentially affected devices worldwide or real-world incidents where this...
Security Bulletin: IBM Operational Decision Manager for April 2024 - Multiple CVEs addressed
Summary IBM Operational Decision Manager is vulnerable to multiple remote code execution and denial of service attacks in third party and open source used in the product for various functions. See full list below. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2014-0114...
PT-2025-16034 · Apache · Apache Struts
Name of the Vulnerable Software and Affected Versions: Apache Struts affected versions not specified Description: The issue concerns a remote code execution problem. No specific details about affected devices or real-world incidents are provided. Recommendations: At the moment, there is no...
Exploit for Files or Directories Accessible to External Parties in Apache Struts
Exploit CVE-2023-50164 para o Laboratório HackTheBox Descr...
Linux Distros Unpatched Vulnerability : CVE-2015-0899
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page...
Linux Distros Unpatched Vulnerability : CVE-2016-1181
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ActionServlet.java in Apache Struts 1 1.x through 1.3.10 mishandles multithreaded access to an ActionForm instance, which allows remote attackers to execute...
Linux Distros Unpatched Vulnerability : CVE-2016-1182
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator configuration, which allows remote attackers to conduct...
New episode “In The Trend of VM” (#11): vulnerabilities that became trending in December and the final report on trending vulnerabilities for 2024
New episode "In The Trend of VM" 11: vulnerabilities that became trending in December and the final report on trending vulnerabilities for 2024. I made this episode exclusively for the Telegram channel @avleonovcom "Vulnerability Management and More". Video on YouTube, LinkedIn Post on Habr rus...
CVE-2023-34149
Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2. Upgrade to Struts 2.5.31 or 6.1.2.1 or greater...
CVE-2023-34396
Allocation of Resources Without Limits or Throttling vulnerability in Apache Software Foundation Apache Struts.This issue affects Apache Struts: through 2.5.30, through 6.1.2. Upgrade to Struts 2.5.31 or 6.1.2.1 or greater...
Exploit for Unrestricted Upload of File with Dangerous Type in Apache Struts
CVE-2024-53677 Exploitation Apache Struts RCE via File U...
PT-2025-6147 · Apache · Apache Struts
Name of the Vulnerable Software and Affected Versions: Apache Struts affected versions not specified Description: The issue concerns a Cross-Site Request Forgery in Apache Struts. No further details are provided about the nature of the issue, affected devices, or real-world incidents...
PT-2025-6479 · Undefined · Undefined
"Source": "CVE FEED", "Title": "CVE-2024-8545 - CVE-2021-35127: Apache Struts Command Injection Vulnerability", "Content": "CVE ID : CVE-2024-8545 Published : Feb. 11, 2025, 2:15 a.m. | 1 hour, 38 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE...
Security Bulletin: Vulnerability in Apache Struts library affect Tivoli Netcool/OMNIbus WebGUI (CVE-2024-53677)
Summary Apache Struts is used by Tivoli Netcool/OMNIbus WebGUI WebGUI as part of its web client component. Vulnerability Details CVEID:CVE-2024-53677 DESCRIPTION: File upload logic in Apache Struts is flawed. An attacker can manipulate file upload params to enable paths traversal and under some...
PT-2025-1358 · Undefined · Undefined
"Source": "CVE FEED", "Title": "CVE-2025-23126 - CVE-2021-36344: Apache Struts Code Injection Vulnerability", "Content": "CVE ID : CVE-2025-23126 Published : Jan. 11, 2025, 3:15 p.m. | 42 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering...
PT-2025-4833 · Undefined · Undefined
"Source": "CVE FEED", "Title": "CVE-2025-23126 - CVE-2021-36344: Apache Struts Code Injection Vulnerability", "Content": "CVE ID : CVE-2025-23126 Published : Jan. 11, 2025, 3:15 p.m. | 42 minutes ago Description : Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering...
Exploit for Unrestricted Upload of File with Dangerous Type in Apache Struts
CVE-2024-53677 - Apache Struts 2 Remote Code Execution Vulnerabi...
About Remote Code Execution – Apache Struts (CVE-2024-53677) vulnerability
About Remote Code Execution - Apache Struts CVE-2024-53677 vulnerability. Apache Struts is an open source software framework for building Java web applications. It allows developers to separate the application's business logic from the user interface. Due to its scalability and flexibility, Apach...