0.959 High
EPSS
Percentile
99.5%
XSLTResult allows for the location of a stylesheet being passed as a request parameter. In some circumstances this can be used to inject remotely executable code.
struts.apache.org/docs/s2-031.html
github.com/apache/struts
nvd.nist.gov/vuln/detail/CVE-2016-3082