struts2-core is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists due to the improper handling of double quote characters in the href
attribute of the s:a
tag, as well as the parameters in the action
attribute of the s:url
tag, allowing XSS attacks.
CPE | Name | Operator | Version |
---|---|---|---|
struts 2 core | le | 2.0.11 |
www.nabble.com/Feedback%3A-WW-2414%2C-XSS-attack-is-possible-if-using-%3Cs%3Aurl-...%3E-and-%3Cs%3Aa-...%3E-td14771449.html
www.nabble.com/Feedback%3A-WW-2414%2C-XSS-attack-is-possible-if-using-%3Cs%3Aurl-...%3E-and-%3Cs%3Aa-...%3E-td14771449i20.html
www.securityfocus.com/bid/34686
github.com/apache/struts/compare/f88805221f9fcdcaf3c2d95e0ec3ef673fab7fcd...93866341ec5396d07b5829be55110ff09dc81bcd
issues.apache.org/struts/browse/WW-2414
issues.apache.org/struts/browse/WW-2427