Security Advisory

CVE-2013-2251

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-07-18 01:00:00

Last updated 2025-10-22 00:05:41

Assigner redhat

State PUBLISHED

Description

Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.

← Browse all CVEs View on cve.org ↗