| Titre | Apache Struts2 S2-057 |
|---|
| Description | Possible Remote Code Execution when using results with no namespace and in same time, its upper action(s) have no or wildcard namespace. Same possibility when using url tag which doesn’t have value and action set. |
|---|
| La source | ⚠️ https://cwiki.apache.org/confluence/display/WW/S2-057 |
|---|
| Utilisateur | edward.zhong (UID 877) |
|---|
| Soumission | 22/08/2018 16:16 (il y a 8 ans) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 123145 [Apache Struts jusqu’à 2.3.34/2.5.16 Namespace élévation de privilèges] |
|---|
| Points | 14 |
|---|