Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-0503

Malicious code in bioql PyPI...

8.1CVSS7.9AI score0.00355EPSS
Exploits0References6
Veracode
Veracodeadded 2025/08/14 7:24 a.m.2 views

Improper Output Neutralization For Logs

org.apache.struts, struts-extras is vulnerable to Improper Output Neutralization for Logs. The vulnerability is due to LookupDispatchAction printing untrusted input to logs without filtering, which allows an attacker to craft input that injects misleading log entries, potentially confusing human ...

6.5CVSS7AI score0.01181EPSS
Exploits0References4Affected Software2
OSV
OSVadded 2025/07/30 6:31 p.m.0 views

GHSA-CX25-XG7C-XFM5 Apache Struts Extras Before 2 has an Improper Output Neutralization for Logs Vulnerability

UNSUPPORTED WHEN ASSIGNED Improper Output Neutralization for Logs vulnerability in Apache Struts. This issue affects Apache Struts Extras: before 2. When using LookupDispatchAction, in some cases, Struts may print untrusted input to the logs without any filtering. Specially-crafted input may lead...

6.5CVSS7.1AI score0.01181EPSS
Exploits0References4
Snyk
Snykadded 2025/07/30 4:44 p.m.3 views

Improper Output Neutralization for Logs

Overview Affected versions of this package are vulnerable to Improper Output Neutralization for Logs via the LookupDispatchAction function. An attacker can manipulate log output by submitting specially crafted input, causing parts of the log message to appear as separate log lines and potentially...

6.5CVSS6.9AI score0.01181EPSS
Exploits0References2
OSV
OSVadded 2025/07/30 4:15 p.m.1 views

CVE-2025-54656

UNSUPPORTED WHEN ASSIGNED Improper Output Neutralization for Logs vulnerability in Apache Struts. This issue affects Apache Struts Extras: before 2. When using LookupDispatchAction, in some cases, Struts may print untrusted input to the logs without any filtering. Specially-crafted input may lead...

6.5CVSS5.7AI score
Exploits0References2
CNNVD
CNNVDadded 2025/07/30 12:0 a.m.1 views

Apache Struts Extras 2 安全漏洞

Apache Struts Extras 2 is an extension to the Apache Struts 2 framework from the Apache USA Foundation. A security vulnerability exists in Apache Struts Extras 2 that stems from the possibility of printing untrusted input to the log when using LookupDispatchAction...

6.5CVSS6.5AI score0.01181EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 6:15 a.m.1 views

SUSE CVE-2006-1548

Cross-site scripting XSS vulnerability in 1 LookupDispatchAction and possibly 2 DispatchAction and 3 ActionDispatcher in Apache Software Foundation ASF Struts before 1.2.9 allows remote attackers to inject arbitrary web script or HTML via the parameter name, which is not filtered in the resulting...

4.3CVSS6.2AI score0.08769EPSS
Exploits0References5
Rows per page
Query Builder