Apache Struts CVE-2013-4310 Security Bypass Vulnerability

Apache Struts is prone to a security-bypass vulnerability.

Few technical details are currently available. This BID will be updated as more information emerges.

Successful exploits will allow an attacker to bypass certain security restrictions which may lead to further attacks.

Versions prior to Apache Struts 2.3.15.3 are vulnerable.

Note: The fix implemented in Apache Struts 2.3.15.2 was incomplete.


 

Privacy Statement
Copyright 2010, SecurityFocus