Apache Struts < 6.4.0 Unrestricted File Upload (S2-067)
Apache Struts versions prior to 6.4.0 are vulnerable to an upload logic flaw allowing an attacker to manipulate file upload parameters to enable path traversal and under some circumstances this can lead to a remote code execution. No source data...