Homepage

org.apache.struts.xwork:xwork-core vulnerabilities

  • latest version

    2.3.37

  • latest non vulnerable version

    2.3.37

  • first published

    14 years ago

  • latest version published

    5 years ago

  • licenses detected

  • package manager

    View on Maven Repository
    • Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the org.apache.struts.xwork:xwork-core package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Improper Input Validation

    [2.0.0,2.3.24.1)
    • H
    Arbitrary Code Execution

    [2.2.1,2.3.28.1]
    • H
    Access Restriction Bypass

    [2.3.20,2.3.28.1]
    • M
    Regular Expression Denial of Service (ReDoS)

    [2.3.20,2.3.29)
    • M
    Improper Input Validation

    [2,2.3.24.1]
    • H
    Command Injection

    [2.0.0,2.3.20.2)[2.3.24,2.3.24.2)[2.3.28,2.3.28.1)
    • M
    Cross-site Scripting (XSS)

    [2,2.3.25)
    • H
    Improper Input Validation

    [2,2.3.28)
    • C
    Authorization Bypass

    [2,2.3.1.2)
    • H
    Parameter Alteration

    [2,2.3.24.1)
    • H
    Insecure Defaults

    [2.3.20,2.3.20.1)
    • H
    Improper Input Validation

    [2.0.0,2.2.3.1)
    • M
    Arbitrary Fie Overwrite

    [2,2.3.1.1)
    • H
    Arbitrary Command Execution

    [2,2.3.1.1)
    • M
    Arbitrary Code Execution

    [2.1.0,2.3.1.1)
    • C
    Improper Input Validation

    [2.0.0,2.2.3.1)
    • H
    Arbitrary Code Execution

    [2,2.3.14.1)
    • H
    Arbitrary Code Execution

    [2.0.0,2.3.14.3)
    • H
    Arbitrary Code Execution

    [2.0.0,2.3.16.2)
    • M
    Denial of Service (DoS)

    [2.0.0,2.3.4.1)
    • L
    Cross-site Scripting (XSS)

    [2.0.0,2.2.3)
    • M
    Information Exposure

    [,2.2.1)
    • H
    Arbitrary Code Injection

    [2.0.0,2.3.14.1)

    Package versions

    1 - 42 of 42 Results
    versionpublisheddirect vulnerabilities
    2.3.3730 Dec, 2018
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.3622 Sep, 2018
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.3524 Jul, 2018
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.345 Sep, 2017
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.337 Jul, 2017
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.326 Mar, 2017
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.315 Oct, 2016
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.307 Jul, 2016
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.2914 Jun, 2016
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2.3.28.119 Apr, 2016
    • 0
      C
    • 2
      H
    • 1
      M
    • 0
      L
    2.3.2818 Mar, 2016
    • 0
      C
    • 3
      H
    • 1
      M
    • 0
      L
    2.3.24.320 Apr, 2016
    • 0
      C
    • 3
      H
    • 2
      M
    • 0
      L
    2.3.24.122 Sep, 2015
    • 0
      C
    • 4
      H
    • 3
      M
    • 0
      L
    2.3.243 May, 2015
    • 0
      C
    • 6
      H
    • 3
      M
    • 0
      L
    2.3.20.320 Apr, 2016
    • 0
      C
    • 5
      H
    • 3
      M
    • 0
      L
    2.3.20.16 May, 2015
    • 0
      C
    • 6
      H
    • 3
      M
    • 0
      L
    2.3.2021 Nov, 2014
    • 0
      C
    • 7
      H
    • 3
      M
    • 0
      L
    2.3.16.32 May, 2014
    • 0
      C
    • 5
      H
    • 2
      M
    • 0
      L
    2.3.16.224 Apr, 2014
    • 0
      C
    • 5
      H
    • 2
      M
    • 0
      L
    2.3.16.11 Mar, 2014
    • 0
      C
    • 6
      H
    • 2
      M
    • 0
      L
    2.3.1630 Nov, 2013
    • 0
      C
    • 6
      H
    • 2
      M
    • 0
      L
    2.3.15.315 Oct, 2013
    • 0
      C
    • 6
      H
    • 2
      M
    • 0
      L
    2.3.15.218 Sep, 2013
    • 0
      C
    • 6
      H
    • 2
      M
    • 0
      L
    2.3.15.114 Jul, 2013
    • 0
      C
    • 6
      H
    • 2
      M
    • 0
      L
    2.3.1514 Jun, 2013
    • 0
      C
    • 6
      H
    • 2
      M
    • 0
      L
    2.3.14.33 Jun, 2013
    • 0
      C
    • 6
      H
    • 2
      M
    • 0
      L
    2.3.14.224 May, 2013
    • 0
      C
    • 7
      H
    • 2
      M
    • 0
      L
    2.3.14.118 Apr, 2013
    • 0
      C
    • 7
      H
    • 2
      M
    • 0
      L
    2.3.1428 Mar, 2013
    • 0
      C
    • 9
      H
    • 2
      M
    • 0
      L
    2.3.126 Mar, 2013
    • 0
      C
    • 9
      H
    • 2
      M
    • 0
      L
    2.3.817 Dec, 2012
    • 0
      C
    • 9
      H
    • 2
      M
    • 0
      L
    2.3.76 Nov, 2012
    • 0
      C
    • 9
      H
    • 2
      M
    • 0
      L
    2.3.4.13 Aug, 2012
    • 0
      C
    • 9
      H
    • 2
      M
    • 0
      L
    2.3.412 May, 2012
    • 0
      C
    • 9
      H
    • 3
      M
    • 0
      L
    2.3.316 Apr, 2012
    • 0
      C
    • 9
      H
    • 3
      M
    • 0
      L
    2.3.1.220 Jan, 2012
    • 0
      C
    • 9
      H
    • 3
      M
    • 0
      L
    2.3.1.125 Dec, 2011
    • 1
      C
    • 9
      H
    • 3
      M
    • 0
      L
    2.3.18 Dec, 2011
    • 1
      C
    • 10
      H
    • 5
      M
    • 0
      L
    2.2.3.15 Sep, 2011
    • 1
      C
    • 10
      H
    • 5
      M
    • 0
      L
    2.2.38 Apr, 2011
    • 2
      C
    • 11
      H
    • 5
      M
    • 0
      L
    2.2.1.114 Dec, 2010
    • 2
      C
    • 11
      H
    • 5
      M
    • 1
      L
    2.2.117 Jul, 2010
    • 2
      C
    • 11
      H
    • 5
      M
    • 1
      L