Lucene search

PRIOn knowledge basePRION:CVE-2015-2992

HistoryFeb 27, 2020 - 6:15 p.m.

Cross site scripting

2020-02-2718:15:00

PRIOn knowledge base

www.prio-n.com

5.9 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.3%

Apache Struts before 2.3.20 has a cross-site scripting (XSS) vulnerability.

CPENameOperatorVersion
strutsge2.0.0
strutslt2.3.20

CPE	Name	Operator	Version
	struts	ge	2.0.0
	struts	lt	2.3.20

References

jvn.jp/en/jp/JVN88408929/index.html

jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000124.html

www.securityfocus.com/bid/76624

security.netapp.com/advisory/ntap-20200330-0001/