Maven package
org.apache.struts/struts-parent
pkg:maven/org.apache.struts/struts-parent
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-4431 | Hig | 7.5 | >= 2.3.20, < 2.3.29 | 2.3.29 | Jul 4, 2016 | Apache Struts 2 2.3.20 through 2.3.28.1 allows remote attackers to bypass intended access restrictions and conduct redirection attacks by leveraging a default method. |
- affected >= 2.3.20, < 2.3.29fixed 2.3.29
Apache Struts 2 2.3.20 through 2.3.28.1 allows remote attackers to bypass intended access restrictions and conduct redirection attacks by leveraging a default method.