4 matches found
The vulnerability of the ValueStack interface implementation in the Apache Struts software platform allows a attacker to gain access to read, modify, or delete data.
The vulnerability of the ValueStack interface implementation in the Apache Struts software platform is related to insufficient validation of input data when processing objects with the top parameter. Exploiting this vulnerability can allow an attacker to gain read, modify, or delete access to dat...
Special top object can be used to access Struts' internals
ValueStack defines special top object which represents root of execution context. It can be used to manipulate Struts' internals or can be used to affect container's settings. Applying better regex which includes pattern to exclude request parameters trying to use top object. This issue was patch...
GHSA-4QGJ-9MVG-3929 Special top object can be used to access Struts' internals
ValueStack defines special top object which represents root of execution context. It can be used to manipulate Struts' internals or can be used to affect container's settings. Applying better regex which includes pattern to exclude request parameters trying to use top object. This issue was patch...
Exploit for Expression Language Injection in Apache Struts
S2-061 The scripts are all written based on the vulhub’s struts...