Lucene search
K

7 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:25 p.m.42 views

K17449: Apache Struts 2 vulnerability CVE-2015-5169

Security Advisory Description Cross-site scripting XSS vulnerability in Apache Struts before 2.3.20. CVE-2015-5169 When debug mode is switched on in Apache Struts, under certain conditions, an arbitrary script may be executed in the 'Problem Report' screen. Affected versions are Struts 2.0.0 -...

6.1CVSS6.3AI score0.07551EPSS
Exploits0
NVD
NVD
added 2017/09/25 9:29 p.m.19 views

CVE-2015-5169

Cross-site scripting XSS vulnerability in Apache Struts before 2.3.20...

6.1CVSS6.5AI score0.07551EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2017/09/25 9:29 p.m.26 views

CVE-2015-5169

Cross-site scripting XSS vulnerability in Apache Struts before 2.3.20...

6.1CVSS6.7AI score0.07551EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/09/25 9:0 p.m.31 views

CVE-2015-5169

Cross-site scripting XSS vulnerability in Apache Struts before 2.3.20...

6.1AI score0.07551EPSS
Exploits0References6
CVE
CVE
added 2017/09/25 9:0 p.m.81 views

CVE-2015-5169

Apache Struts is affected by an XSS vulnerability (CVE-2015-5169) present in Struts versions prior to 2.3.20. When debug mode is enabled, specially crafted inputs can trigger arbitrary script execution in a victim’s browser in the context of the web application. Public advisories and vendor notes...

6.1CVSS5.9AI score0.07551EPSS
Exploits0References6Affected Software1
F5 Networks
F5 Networks
added 2015/10/16 12:0 a.m.36 views

SOL17449 - Apache Struts 2 vulnerability CVE-2015-5169

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

6.1CVSS3.6AI score0.07551EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/12/10 12:0 a.m.57 views

Apache Struts 2 Multiple Vulnerabilities (S2-023) (S2-025)

The remote web server is using a version of Struts 2 that is affected by multiple vulnerabilities : - A cross-site request forgery vulnerability exists due to the token generator failing to adequately randomize the token values. An attacker can exploit this issue by extracting a token from a form...

6.8CVSS7.2AI score0.07551EPSS
Exploits0References5
Rows per page
Query Builder