AVideo 输入验证错误漏洞

AVideo is an open source broadcast network creation tool from World Wide Broadcast Network. An input validation error vulnerability exists in AVideo versions prior to 20.0 that stems from a lack of validation of the cancelUri parameter during user login, which could lead to open redirection and...

SUSE CVE-2006-1546

Apache Software Foundation ASF Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check...

GHSA-VF8G-MPMW-QV87 Apache Struts vulnerable to Improper Input Validation

Apache Software Foundation ASF Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check...

struts bypass validation

Apache Software Foundation ASF Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check...

PT-2006-2547 · Apache · Apache Struts

Name of the Vulnerable Software and Affected Versions: Apache Software Foundation ASF Struts versions prior to 1.2.9 Description: The issue allows remote attackers to bypass validation by sending a request with a parameter org.apache.struts.taglib.html.Constants.CANCEL, causing the action to be...