org.apache.struts:struts2-showcase@2.0.8 vulnerabilities
-
latest version
6.3.0.2
-
latest non vulnerable version
-
first published
17 years ago
-
latest version published
5 months ago
-
licenses detected
- [2.0.5,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.apache.struts:struts2-showcase package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
org.apache.struts:struts2-showcase is a free, open-source, MVC framework for creating Java web applications. Affected versions of this package are vulnerable to Arbitrary Code Injection. It allows remote attackers to execute arbitrary OGNL code via a crafted parameter name that is not properly handled when invoking a redirect. How to fix Arbitrary Code Injection? Upgrade |
[2.0.0,2.3.14.1)
|