A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.
References
Configurations
History
13 Feb 2023, 00:24
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2019-12-05 21:15
Updated : 2023-12-10 13:13
NVD link : CVE-2012-1592
Mitre link : CVE-2012-1592
CVE.ORG link : CVE-2012-1592
JSON object : View
Products Affected
apache
- struts
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type