Struts-core is vulnerable to denial of service (DoS) attacks. A malicious user can pass a URL string to the application to overload the URL validation process, preventing other strings from being validated.
CPE | Name | Operator | Version |
---|---|---|---|
struts 2 core | le | 2.5.10.1 |