Apache Struts Session Tampering Security Bypass Vulnerability

Bugtraq ID: 50940
Class: Input Validation Error
CVE: CVE-2011-5057
Remote: Yes
Local: No
Published: Dec 07 2011 12:00AM
Updated: Jan 10 2012 10:00PM
Credit: Hisato Killing
Vulnerable: Apache Software Foundation Struts 2.1.8 .1
Apache Software Foundation Struts 2.0.9
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus