Apache Struts ClassLoader Manipulation CVE-2014-0094 Security Bypass Vulnerability

Apache Struts is prone to a security-bypass vulnerability because it fails to adequately handle user-supplied input.

An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks.

Apache Struts versions 2.0.0 through 2.3.16 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus