Lucene search
PRIOn knowledge basePRION:CVE-2011-2088HistoryMay 13, 2011 - 5:05 p.m.
Security feature bypass
2011-05-1317:05:00
PRIOn knowledge base
www.prio-n.com
1
XWork 2.2.1 in Apache Struts 2.2.1, and OpenSymphony XWork in OpenSymphony WebWork, allows remote attackers to obtain potentially sensitive information about internal Java class paths via vectors involving an s:submit element and a nonexistent method, a different vulnerability than CVE-2011-1772.3.
References
Related
openvas
openvas
Apache Struts Security Update (S2-006) - Active Check
2011-05-23 00:00:00
Apache Struts Security Update (S2-006) - Version Check
2021-09-14 00:00:00
Apache Struts2 'XWork' Information Disclosure Vulnerability
2011-05-23 00:00:00
github
github
XWork in Apache Struts Reveals Sensitive Information
2022-05-14 02:55:17
Cross-site Scripting in Apache Struts
2022-05-17 05:35:28
osv
osv
XWork in Apache Struts Reveals Sensitive Information
2022-05-14 02:55:17
Cross-site Scripting in Apache Struts
2022-05-17 05:35:28
nvd
nvd
CVE-2011-2088
2011-05-13 17:05:45
CVE-2011-1772
2011-05-13 17:05:44
cve
cve
CVE-2011-2088
2011-05-13 17:05:45
CVE-2011-1772
2011-05-13 17:05:44
cvelist
cvelist
CVE-2011-2088
2011-05-13 17:00:00
CVE-2011-1772
2011-05-13 17:00:00
nessus
nessus
Apache Struts 2.x < 2.2.3 Multiple XSS (S2-006)
2018-09-10 00:00:00
securityvulns
securityvulns
Apache Struts 2 Multiple Reflected XSS in XWork error pages
2011-05-11 00:00:00
seebug
seebug
Apache Struts XWork 's:submit' HTMLζ ηΎθ·¨η«θζ¬ζΌζ΄
2011-05-12 00:00:00
prion
prion
Cross site scripting
2011-05-13 17:05:00
checkpoint_advisories
checkpoint_advisories
Apache Struts XWork Error Page Multiple Cross-Site Scripting (CVE-2011-1772)
2013-10-13 00:00:00
jvn
jvn
JVN#25435092: Apache Struts vulnerable to cross-site scripting
2011-12-22 00:00:00
packetstorm
packetstorm
Apache Struts 2 Cross Site Scripting
2011-05-11 00:00:00
