This module exploits an OGNL injection vulnerability in Apache Roller < 5.0.2. The vulnerability is due to an OGNL injection on the UIAction controller because of an insecure usage of the ActionSupport.getText method.
Vulnerability Type: Remote Command Execution
For the exploit source code contact DSquare Security sales team.