| CVE-2016-3081 |
high |
8.1 |
9.1 |
|
|
|
10y ago |
Apache Struts RCE Vulnerability |
| CVE-2013-2115 |
high |
8.1 |
9.1 |
|
|
|
13y ago |
Code injection in Apache Struts |
| CVE-2016-4461 |
high |
8.8 |
8.8 |
|
|
|
9y ago |
Apache Struts forced double OGNL evaluation |
| CVE-2016-0785 |
high |
8.8 |
8.8 |
|
|
|
10y ago |
Apache Struts RCE Vulnerability |
| CVE-2014-0113 |
high |
— |
8.5 |
|
|
|
12y ago |
ClassLoader manipulation in Apache Struts |
| CVE-2014-0112 |
high |
— |
8.5 |
|
|
|
12y ago |
ClassLoader manipulation in Apache Struts |
| CVE-2017-9804 |
high |
7.5 |
7.5 |
|
|
|
9y ago |
Apache Struts allows entering a custom URL in a form field if built-in URLValidator is used |
| CVE-2015-5209 |
high |
7.5 |
7.5 |
|
|
|
9y ago |
Special top object can be used to access Struts' internals |
| CVE-2017-9787 |
high |
7.5 |
7.5 |
|
|
|
9y ago |
Spring AOP functionality (Struts) vulnerable to DoS attack |
| CVE-2015-1831 |
high |
— |
7.5 |
|
|
|
11y ago |
Incomplete exclude pattern in Apache Struts |
| CVE-2011-1772 |
low |
— |
3.6 |
|
|
|
15y ago |
Cross-site Scripting in Apache Struts |
