Findings for SCA, Medium, [TheRedHatter/javagoof:todolist-web-struts/pom.xml]:Improper Input Validation
Created by: armorcodegithubpreprod[bot]
Findings for SCA, Medium, [TheRedHatter/javagoof:todolist-web-struts/pom.xml]:Improper Input Validation
Component Details
- Exploit Maturity: no-known-exploit
- Vulnerable Package: -
- Current Version: -
- Vulnerable Version(s): >[2,2.3.24.1]
- Vulnerable Path: >null
Overview
org.apache.struts.xwork:xwork-core
Apache Struts 2.0.0 through 2.3.24.1 does not properly cache method references when used with OGNL before 3.0.12, which allows remote attackers to cause a denial of service (block access to a web site) via unspecified vectors.
References
- NVD Snyk Project Status: Active