7 matches found
SUSE CVE-2006-1548
Cross-site scripting XSS vulnerability in 1 LookupDispatchAction and possibly 2 DispatchAction and 3 ActionDispatcher in Apache Software Foundation ASF Struts before 1.2.9 allows remote attackers to inject arbitrary web script or HTML via the parameter name, which is not filtered in the resulting...
com.octo.captcha:jcaptcha-all (=1.0-RC-2.0.1), com.thesett:struts-tools (>=0.8-M1 <=0.9.117) +33 more potentially affected by CVE-2006-1548 via struts:struts (>=1.1 <=1.2.8)
struts:struts MAVEN version =1.1, =0.8-M1, =0.9.0, =1.0.0, =3.2, =3.2, =3.2, =3.2, =1.1.5, =1.0.3, =1.0.4 and more Source cves: CVE-2006-1548 Source advisory: OSV:GHSA-P3VW-FVWX-QCV5...
Apache Struts XSS Vulnerability (CVE-2006-1546, CVE-2006-1547, CVE-2006-1548)
Apache Struts is prone to a cross-site scripting XSS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
Apache Struts Security Update (CVE-2006-1546, CVE-2006-1547, CVE-2006-1548)
Apache Struts is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Moderate: Red Hat Security Advisory: struts security update for Red Hat Application Server
An updated Struts package that fixes several security issues is now available for Red Hat Application Server. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Struts is a framework for building web applications with Java. A validation bug was...
CVE-2006-1548
Cross-site scripting XSS vulnerability in 1 LookupDispatchAction and possibly 2 DispatchAction and 3 ActionDispatcher in Apache Software Foundation ASF Struts before 1.2.9 allows remote attackers to inject arbitrary web script or HTML via the parameter name, which is not filtered in the resulting...
CVE-2006-1548
CVE-2006-1548 is an XSS vulnerability in Apache Struts prior to 1.2.9. The flaw allows remote attackers to inject arbitrary script/HTML via the request parameter name in LookUpDispatchAction, and possibly DispatchAction and ActionDispatcher, with the error message not filtering the input. Connect...