Exploit for #VU49062 Code Injection in Apache Struts
Vulnerability identifier: #VU49062
Vulnerability risk: High
CVSSv3.1: 9.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-94
Exploitation vector: Network
Exploits in database: 3
- December 17, 2020
- Apache Struts 2.2.1.1 - Remote Command Execution (Metasploit) [Exploit-DB]
- Apache Struts 2 < 2.3.1 - Multiple Vulnerabilities [Exploit-DB]
- Apache Struts Remote Command Execution [Metasploit]
Impact: Code execution
Vulnerable software:
Apache Struts
Server applications /
Frameworks for developing and running applications
Vendor: Apache Foundation
