Lucene search
Veracode Vulnerability DatabaseVERACODE:7720HistoryNov 09, 2018 - 5:13 a.m.
Directory Traversal
2018-11-0905:13:20
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.966 High
EPSS
Percentile
99.6%
struts2-core is vulnerable to directory traversal attacks. The vulnerability exists due to the lack of sanitization in file path, allowing ..%252f to be used in the file path to perform directory traversal attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| struts 2 core | eq | 2.1.2 | |
| struts 2 core | le | 2.0.11.2 |
Related
osv
osv
Apache Struts directory traversal vulnerability
2022-05-17 05:52:21
openvas
openvas
Apache Struts Security Update (S2-004) - Active Check
2009-04-23 00:00:00
Apache Struts Security Update (S2-004) - Version Check
2021-09-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache Struts Classes Directory Traversal (CVE-2008-6505)
2009-10-04 00:00:00
nvd
nvd
CVE-2008-6505
2009-03-23 14:19:12
cve
cve
CVE-2008-6505
2009-03-23 14:19:12
cvelist
cvelist
CVE-2008-6505
2009-03-23 14:00:00
ubuntucve
ubuntucve
CVE-2008-6505
2009-03-23 00:00:00
prion
prion
Directory traversal
2009-03-23 14:19:00
github
github
Apache Struts directory traversal vulnerability
2022-05-17 05:52:21
nessus
nessus
Apache Struts 2 < 2.0.12 / 2.1.3 Dispatcher Directory Traversal
2008-11-24 00:00:00