Lucene search
K

5 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:15 p.m.41 views

K34352169: Apache Struts vulnerability CVE-2012-0393

Security Advisory Description The ParameterInterceptor component in Apache Struts before 2.3.1.1 does not prevent access to public constructors, which allows remote attackers to create or overwrite arbitrary files via a crafted parameter that triggers the creation of a Java object. CVE-2012-0393...

6.4CVSS9AI score0.38261EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/05/04 12:29 a.m.4 views

be.objectify:objectify-struts2-tags (=1.0), br.net.woodstock.rockframework:rockframework-struts2 (>=2.0.0 <=2.0.8) +202 more potentially affected by CVE-2012-0393 via org.apache.struts:struts2-core (>=2.0.5 <=2.3.16.3)

org.apache.struts:struts2-core MAVEN version =2.0.5, =2.0.0, =1.2.1, =1.5.3, =1.5.3, =0.5.9, =1.2.0, =1.0.0, =2.0, =1.0.3, =1.2.2, =1.4.0 and more Source cves: CVE-2012-0393 Source advisory: OSV:GHSA-HXQQ-W4MR-MC62...

6.4CVSS7.5AI score0.38261EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2012/01/08 3:55 p.m.28 views

CVE-2012-0393

The ParameterInterceptor component in Apache Struts before 2.3.1.1 does not prevent access to public constructors, which allows remote attackers to create or overwrite arbitrary files via a crafted parameter that triggers the creation of a Java object...

6.4CVSS7.3AI score0.38261EPSS
Exploits1References3
Cvelist
Cvelist
added 2012/01/08 3:0 p.m.25 views

CVE-2012-0393

The ParameterInterceptor component in Apache Struts before 2.3.1.1 does not prevent access to public constructors, which allows remote attackers to create or overwrite arbitrary files via a crafted parameter that triggers the creation of a Java object...

9AI score0.38261EPSS
Exploits1References6
CVE
CVE
added 2012/01/08 3:0 p.m.77 views

CVE-2012-0393

CVE-2012-0393 concerns Apache Struts 2.x. The vulnerability lies in the ParameterInterceptor component not preventing access to public constructors, allowing a remote attacker to cause the creation of Java objects and thus “trigger” the creation or overwrite of arbitrary files via a crafted param...

6.4CVSS8.8AI score0.38261EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder