oss-sec mailing list archives
CVE request: Struts2 xsltResult local code execution flaw
From: David Jorm <djorm () redhat com>
Date: Wed, 28 Mar 2012 01:29:27 -0400 (EDT)
A local code execution flaw has been identified in Struts2. I cannot find a CVE ID for it anywhere. Original report: http://seclists.org/bugtraq/2012/Mar/110 OSVDB: http://osvdb.org/80547 X-Force: http://xforce.iss.net/xforce/xfdb/74319 Thanks -- David Jorm / Red Hat Security Response Team
Current thread:
- CVE request: Struts2 xsltResult local code execution flaw David Jorm (Mar 27)
- Re: CVE request: Struts2 xsltResult local code execution flaw Kurt Seifried (Mar 28)