Published: 13/05/2011 Updated: 19/01/2012

CVSS v2 Base Score: 2.6 | Impact Score: 2.9 | Exploitability Score: 4.9

VMScore: 266

Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in XWork in Apache Struts 2.x prior to 2.2.3, and OpenSymphony XWork in OpenSymphony WebWork, allow remote malicious users to inject arbitrary web script or HTML via vectors involving (1) an action name, (2) the action attribute of an s:submit element, or (3) the method attribute of an s:submit element.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apache struts 2.0.0
apache struts 2.0.1
apache struts 2.0.2
apache struts 2.0.3
apache struts 2.0.4
apache struts 2.0.5
apache struts 2.0.6
apache struts 2.0.7
apache struts 2.0.8
apache struts 2.0.9
apache struts 2.0.10
apache struts 2.0.11
apache struts 2.0.11.1
apache struts 2.0.11.2
apache struts 2.0.12
apache struts 2.0.13
apache struts 2.0.14
apache struts 2.1.0
apache struts 2.1.1
apache struts 2.1.2
apache struts 2.1.3
apache struts 2.1.4
apache struts 2.1.5
apache struts 2.1.6
apache struts 2.1.8
apache struts 2.1.8.1
apache struts 2.2.1
apache struts 2.2.1.1
opensymphony webwork
opensymphony xwork

source: wwwsecurityfocuscom/bid/47784/info Apache Struts is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data Successful exploitation requires 'Dynamic Method Invocation' to be enabled by default An attacker may leverage this issue to execute arbitrary script code in the browser ...

Apache Struts 2 framework before version 223 is vulnerable to reflected cross site scripting attacks when default XWork generated error messages are displayed ...

What this is generate_esgfconfsh is a script file from the esgf_scanner repo which is used to generate as output, a configuration file for use with the CVEChecker tool The idea is to be able to auto-generate a manifest for each release, and use that an input to scan for known vulnerabilities When a reported vulnerability is studied and deemed to be addressed, it can then be

What is CVEChecker ? CVEChecker is a tool that aggregates CVE information from Redhat and the NVD vulnerability data feeds, to setup a local vulnerability store that can be queried offline Vulnerabilities can be looked up on the basis of user-specified parameters such as a product name, keywords in the vulnerability description, or the CVEid itself Filters such as --aft

CWE-79 http://jvn.jp/en/jp/JVN25435092/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2011-000106 http://secureappdev.blogspot.com/2011/05/apache-struts-2-xwork-webwork-reflected.html http://secureappdev.blogspot.com/2011/05/Struts_2_XWork_WebWork_XSS_in_error_pages.html http://struts.apache.org/2.2.3/docs/version-notes-223.html http://struts.apache.org/2.x/docs/s2-006.html http://www.securityfocus.com/bid/47784 http://www.ventuneac.net/security-advisories/MVSA-11-006 http://www.vupen.com/english/advisories/2011/1198 https://issues.apache.org/jira/browse/WW-3579 https://www.rapid7.com/db/vulnerabilities/struts-cve-2011-1772 https://www.rapid7.com/db/vulnerabilities/struts-cve-2011-2088 https://nvd.nist.gov https://www.exploit-db.com/exploits/35735/

CVE-2011-1772

Vulnerability Summary

Most Upvoted Vulmon Research Post

Exploits

Mailing Lists

Github Repositories

References

Vulmon Search

About

Products

Connect