apache struts 2.5.11 vulnerabilities and exploits

(subscribe to this query)

8.1

CVSSv3

The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with an instance of XStream for deserialization without any type filtering, which can lead to Remote Code Execution when deserializing XML payloads....

Apache Struts 2.1.8 Apache Struts 2.1.8.1 Apache Struts 2.3.1.2 Apache Struts 2.3.3 Apache Struts 2.3.14.2 Apache Struts 2.3.14.3 Apache Struts 2.3.16.2 Apache Struts 2.3.16.3 Apache Struts 2.3.28 Apache Struts 2.3.28.1 Apache Struts 2.5.3 Apache Struts 2.5.4 Apache Struts 2.5.10.1 Apache Struts 2.5.11 Apache Struts 2.1.2 Apache Struts 2.2.1 Apache Struts 2.2.1.1 Apache Struts 2.3.4 Apache Struts 2.3.4.1 Apache Struts 2.3.15 Apache Struts 2.3.15.1 Apache Struts 2.3.20 Apache Struts 2.3.20.1 Apache Struts 2.3.29 Apache Struts 2.3.30 Apache Struts 2.5.5 Apache Struts 2.5.6 Apache Struts 2.5.12 Apache Struts 2.1.5 Apache Struts 2.1.6 Apache Struts 2.3.1 Apache Struts 2.3.1.1 Apache Struts 2.3.12 Apache Struts 2.3.14 Apache Struts 2.3.14.1 Apache Struts 2.3.16 Apache Struts 2.3.16.1 Apache Struts 2.3.24.1 Apache Struts 2.3.24.3 Apache Struts 2.3.33 Apache Struts 2.5.1 Apache Struts 2.5.2 Apache Struts 2.5.9 Apache Struts 2.5.10 Apache Struts 2.1.3 Apache Struts 2.1.4 Apache Struts 2.2.3 Apache Struts 2.2.3.1 Apache Struts 2.3.7 Apache Struts 2.3.8 Apache Struts 2.3.15.2 Apache Struts 2.3.15.3 Apache Struts 2.3.20.3 Apache Struts 2.3.24 Apache Struts 2.3.31 Apache Struts 2.3.32 Apache Struts 2.5.7 Apache Struts 2.5.81 EDB exploit available1 Metasploit module available76 Github repositories available13 Articles available

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook