Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix. (CVE-2013-2251)
Impact
None
AI Score
Confidence
EPSS
Percentile
99.9%