Vulnerability impacting Apache Struts 2 (CVE-2023

沒有這個頁面的資訊。

2023年12月14日 — A Critical RCE vulnerability has been found in the Apache Struts2 Framework with 'flawed file upload logic'. This can allow a temporary file ...

2023年12月14日 — This vulnerability allows attackers to exploit a flaw in Apache Struts' file upload system. It lets them manipulate the file upload parameters and perform path ...

2023年12月15日 — The vulnerability in Apache Struts arises from parameter pollution. In this scenario, an attacker can manipulate the request by modifying the ...

2023年12月13日 — The vulnerability allows an attacker to manipulate file upload parameters to enable path traversal, potentially leading to the uploading of a malicious file ...

2023年12月14日 — CVE-2023-50164 represents a critical vulnerability discovered within Apache Struts 2, which is an open source framework that is widely used for developing and ...

Known vulnerabilities in the org.apache.struts:struts2-core package. This does not include vulnerabilities belonging to this package's dependencies.

2023年12月19日 — The Apache Struts project released new versions to patch a security vulnerability that initially was thought to be a Directory Traversal Issue.

2023年12月15日 — The vulnerability is rated as a 9.8 on the Common Vulnerability Scoring System (CVSS3) and can allow a malicious actor to upload malicious files and perform ...

2023年12月26日 — CVE-2023-50164 was published on December 7th, 2023 to create awareness of a critical vulnerability in Apache Struts 2. A CVSS score of 9.8 has ...