Lucene search
RedhatCVELIST:CVE-2016-4430HistoryJul 04, 2016 - 10:00 p.m.
CVE-2016-4430
2016-07-0422:00:00
redhat
www.cve.org
7
Apache Struts 2 2.3.20 through 2.3.28.1 mishandles token validation, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks via unspecified vectors.
References
jvn.jp/en/jp/JVN45093481/index.html
jvndb.jvn.jp/jvndb/JVNDB-2016-000111
www-01.ibm.com/support/docview.wss?uid=ssg1S1009282
www-01.ibm.com/support/docview.wss?uid=swg21987854
www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
www.securityfocus.com/bid/91281
bugzilla.redhat.com/show_bug.cgi?id=1348249
struts.apache.org/docs/s2-038.html
Related
prion
prion
Cross site request forgery (csrf)
2016-07-04 22:59:00
ubuntucve
ubuntucve
CVE-2016-4430
2016-07-04 00:00:00
nvd
nvd
CVE-2016-4430
2016-07-04 22:59:05
github
github
Apache Struts CSRF Vulnerability
2022-05-17 00:29:27
redhatcve
redhatcve
CVE-2016-4430
2016-06-20 20:24:28
osv
osv
Apache Struts CSRF Vulnerability
2022-05-17 00:29:27
cve
cve
CVE-2016-4430
2016-07-04 22:59:05
jvn
jvn
JVN#45093481: Multiple vulnerabilities in Apache Struts 2
2016-06-20 00:00:00
f5
f5
openvas
openvas
Apache Struts Security Update (S2-037, S2-038, S2-039, S2-040)
2016-11-18 00:00:00
ibm
ibm
nessus
nessus
Apache Struts 2.x < 2.3.29 Multiple Vulnerabilities (S2-035 - S2-040)
2016-06-24 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2017
2018-03-20 00:00:00