Apache Struts CVE-2013-2135 OGNL Expression Injection Vulnerability

Bugtraq ID: 60345
Class: Input Validation Error
CVE: CVE-2013-2135
Remote: Yes
Local: No
Published: Jun 05 2013 12:00AM
Updated: Jun 02 2014 12:10AM
Credit: Jon Passki via Coverity Security Research Laboratory
Vulnerable: IBM Storwize V7000 Unified 1.3.1.0
IBM Storwize V7000 Unified 1.3.0.5
IBM Storwize V7000 Unified 1.3.0.0
Apache Software Foundation Struts 2.2.3
Apache Software Foundation Struts 2.2.1 1
Apache Software Foundation Struts 2.2
Apache Software Foundation Struts 2.1.8
Apache Software Foundation Struts 2.1.6
Apache Software Foundation Struts 2.1.5
Apache Software Foundation Struts 2.1.2
Apache Software Foundation Struts 2.1.1
Apache Software Foundation Struts 2.1
Apache Software Foundation Struts 2.0.14
Apache Software Foundation Struts 2.0.12
Apache Software Foundation Struts 2.0.11
Apache Software Foundation Struts 2.0.10
Apache Software Foundation Struts 2.0.9
Apache Software Foundation Struts 2.0.8
Apache Software Foundation Struts 2.0.7
Apache Software Foundation Struts 2.0.6
Apache Software Foundation Struts 2.0.5
Apache Software Foundation Struts 2.0.4
Apache Software Foundation Struts 2.0.3
Apache Software Foundation Struts 2.0.2
Apache Software Foundation Struts 2.0.1
Apache Software Foundation Struts 2.0
Apache Software Foundation Struts 2.3.1.2
Apache Software Foundation Struts 2.3.1.1
Apache Software Foundation Struts 2.2.3.1
Apache Software Foundation Struts 2.1.4
Apache Software Foundation Struts 2.1.3
Apache Software Foundation Struts 2.0.13
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus