Exploit for #VU88567 Security features bypass in Apache Struts
Vulnerability identifier: #VU88567
Vulnerability risk: Medium
CVSSv4.0: 6.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:A/U:Green]
CVE-ID:
CWE-ID:
CWE-254
Exploitation vector: Network
Exploits in database: 3
- April 16, 2024
- Apache Struts < 2.2.0 - Remote Command Execution (Metasploit) [Exploit-DB]
- Struts2/XWork < 2.2.0 - Remote Command Execution [Exploit-DB]
- Apache Struts Remote Command Execution [Metasploit]
Vulnerable software:
Apache Struts
Server applications /
Frameworks for developing and running applications
Vendor: Apache Foundation
