VYPR

Maven package

org.apache.struts/struts2-struts1-plugin

pkg:maven/org.apache.struts/struts2-struts1-plugin

Vulnerabilities (1)

  • CVE-2017-9791CriKEVJul 10, 2017
    affected <= 2.3.37

    The Struts 1 plugin in Apache Struts 2.1.x and 2.3.x might allow remote code execution via a malicious field value passed in a raw message to the ActionMessage.