com.addc:addc-svr-struts12 (>=2.5 <=2.6.1), com.addc:addc-web-struts12 (>=2.5 <=2.6.1) +49 more potentially affected by CVE-2025-54656 via struts:struts (=1.2.9)

struts:struts MAVEN version =1.2.9 is affected by a known vulnerability. The following packages have a transitive dependency on struts:struts and may be impacted: - com.addc:addc-svr-struts12 =2.5, =2.5, =5.0, =5.0, =4.0.3, =2.0.0, =2.10.0 - net.mlw:vlh =0.1.13 - net.openurp.ecupl:ecupl-eams-weba...

CVE-2006-1547

ActionForm in Apache Software Foundation ASF Struts before 1.2.9 with BeanUtils 1.7 allows remote attackers to cause a denial of service via a multipart/form-data encoded form with a parameter name that references the public getMultipartRequestHandler method, which provides further access to...