Lucene search
RedhatCVELIST:CVE-2013-2135HistoryJul 16, 2013 - 6:00 p.m.
CVE-2013-2135
2013-07-1618:00:00
redhat
www.cve.org
6
Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted value that contains both “${}” and “%{}” sequences, which causes the OGNL code to be evaluated twice.
Related
osv
osv
Arbitrary code execution in Apache Struts 2
2022-05-14 01:57:01
Arbitrary code execution in Apache Struts 2
2022-05-14 01:57:02
github
github
Arbitrary code execution in Apache Struts 2
2022-05-14 01:57:01
Arbitrary code execution in Apache Struts 2
2022-05-14 01:57:02
ubuntucve
ubuntucve
CVE-2013-2135
2013-07-16 00:00:00
CVE-2013-2134
2013-07-16 00:00:00
nvd
nvd
CVE-2013-2135
2013-07-16 18:55:01
CVE-2013-2134
2013-07-16 18:55:01
prion
prion
Design/Logic Flaw
2013-07-16 18:55:00
Code injection
2013-07-16 18:55:00
cve
cve
CVE-2013-2135
2013-07-16 18:55:01
CVE-2013-2134
2013-07-16 18:55:01
nessus
nessus
Apache Struts 2 OGNL Expression Handling Double Evaluation Error Remote Command Execution
2013-06-19 00:00:00
Apache Struts 2.x < 2.3.14.3 RCE (S2-015)
2018-09-10 00:00:00
cvelist
cvelist
CVE-2013-2134
2013-07-16 18:00:00
openvas
openvas
Apache Struts Security Update (S2-012, S2-015) - Version Check
2021-09-14 00:00:00
f5
f5
huawei
huawei
Security Advisory-Multiple Apache Struts2 Vulnerabilities in Huawei Products
2013-07-30 00:00:00
wallarmlab
wallarmlab
New Struts2 Remote Code Execution exploit caught in the wild
2017-03-09 00:15:54
oracle
oracle
Oracle Critical Patch Update - October 2013
2013-10-15 00:00:00
Oracle Critical Patch Update - January 2014
2014-01-14 00:00:00