Lucene search
ApacheCVELIST:CVE-2016-6795HistoryOct 18, 2016 - 12:00 a.m.
CVE-2016-6795
2016-10-1800:00:00
apache
www.cve.org
1
In the Convention plugin in Apache Struts 2.3.x before 2.3.31, and 2.5.x before 2.5.5, it is possible to prepare a special URL which will be used for path traversal and execution of arbitrary code on server side.
CNA Affected
[
{
"product": "Apache Struts",
"vendor": "Apache Software Foundation",
"versions": [
{
"status": "affected",
"version": "2.3.x before 2.3.31"
},
{
"status": "affected",
"version": "2.5.x before 2.5.5"
}
]
}
]Related
osv
osv
Path Traversal in Apache Struts
2022-05-14 00:54:13
CVE-2016-6795
2017-09-20 17:29:00
nvd
nvd
CVE-2016-6795
2017-09-20 17:29:00
openvas
openvas
Apache Struts Path Traversal Vulnerability (S2-042) - Linux
2017-09-28 00:00:00
Apache Struts Security Update (S2-042)
2017-09-28 00:00:00
f5
f5
K43167094 : Apache Struts 2 vulnerability CVE-2016-6795
2016-11-28 00:00:00
SOL43167094 - Apache Struts 2 vulnerability CVE-2016-6795
2016-11-28 00:00:00
cve
cve
CVE-2016-6795
2017-09-20 17:29:00
ubuntucve
ubuntucve
CVE-2016-6795
2017-09-20 00:00:00
prion
prion
Path traversal
2017-09-20 17:29:00
nessus
nessus
github
github
Path Traversal in Apache Struts
2022-05-14 00:54:13