Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2006-1546

Опубликовано: 30 мар. 2006
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5

Описание

Apache Software Foundation (ASF) Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check.

РелизСтатусПримечание
dapper

released

1.2.9-1ubuntu1
devel

released

1.2.9-1ubuntu1
edgy

released

1.2.9-1ubuntu1
feisty

released

1.2.9-1ubuntu1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 81%
0.01612
Низкий

7.5 High

CVSS2

Связанные уязвимости

redhat логотип

CVE-2006-1546

redhat
больше 19 лет назад

Apache Software Foundation (ASF) Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check.

nvd логотип

CVE-2006-1546

nvd
больше 19 лет назад

Apache Software Foundation (ASF) Struts before 1.2.9 allows remote attackers to bypass validation via a request with a 'org.apache.struts.taglib.html.Constants.CANCEL' parameter, which causes the action to be canceled but would not be detected from applications that do not use the isCancelled check.

debian логотип

CVE-2006-1546

debian
больше 19 лет назад

Apache Software Foundation (ASF) Struts before 1.2.9 allows remote att ...

github логотип

GHSA-vf8g-mpmw-qv87

CVSS3: 7.3
github
больше 3 лет назад

Apache Struts vulnerable to Improper Input Validation

EPSS

Процентиль: 81%
0.01612
Низкий

7.5 High

CVSS2