Back to search
CVE-2016-4436
Published: Oct 3, 2016
Modified: Aug 6, 2024
PUBLISHED
Description
Apache Struts 2 before 2.3.29 and 2.5.x before 2.5.1 allow attackers to have unspecified impact via vectors related to improper action name clean up.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
91280
vdb-entry
x_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg21987854
x_refsource_CONFIRM
http://www-01.ibm.com/support/docview.wss?uid=ssg1S1009282
x_refsource_CONFIRM
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
x_refsource_CONFIRM
https://struts.apache.org/docs/s2-035.html
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now