Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-8035

Malware in sbrugna...

9.8CVSS9.5AI score0.01983EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:19 a.m.6 views

SUSE CVE-2019-0230

Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution...

9.8CVSS9.7AI score0.97399EPSS
Exploits15References3
Packet Storm
Packet Storm
added 2020/11/17 12:0 a.m.653 views

Apache Struts 2.5.20 Double OGNL Evaluation

Exploit Title: Apache Struts 2.5.20 - Double OGNL evaluation Date: 08/18/2020 Exploit Author: West Shepherd Vendor Homepage: https://struts.apache.org/download.cgi Version: Struts 2.0.0 - Struts 2.5.20 S2-059 CVE : CVE-2019-0230 Credit goes to reporters Matthias Kaiser, Apple InformationSecurity,...

7.5CVSS0.97399EPSS
Exploits15
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 10:47 p.m.33 views

Security Bulletin: Vulnerability in Apache Struts affects IBM Social Media Analytics (CVE-2016-0785)

Summary An Apache Struts vulnerability was addressed by IBM Social Media Analytics 1.3.0 IF18. Vulnerability Details CVEID: CVE-2016-0785 DESCRIPTION: Apache Struts could allow a remote attacker to execute arbitrary code on the system, caused by a double OGNL evaluation of attribute values. By...

9CVSS1.2AI score0.08812EPSS
Exploits0Affected Software1
Prion
Prion
added 2017/12/13 3:29 p.m.12 views

Design/Logic Flaw

It was possible for double OGNL evaluation in FreeMarker templates through Struts FreeMarker tags to occur. An attacker who has restricted administration rights to Bamboo or who hosts a website that a Bamboo administrator visits, is able to exploit this vulnerability to execute Java code of their...

6.8CVSS9.3AI score0.01873EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder