admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-06 02:31:35 +00:00
Code Issues Packages Projects Releases Wiki Activity
GobyVuls/Struts2/S2-061(CVE-2020-17530)
History
tardc 04c173e86f add S2-061
2020-12-16 10:39:16 +08:00
..
README.md
add S2-061
2020-12-16 10:39:16 +08:00
S2-061.gif
add S2-061
2020-12-16 10:39:16 +08:00

README.md

S2-061 (CVE-2020-17530) Remote Code Execution Vulnerability

Forced OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution. Affected software : Apache Struts 2.0.0 - Struts 2.5.25.

Affected version: Apache Struts 2.0.0 - Struts 2.5.25

FOFA query rule: app="Struts2"

Demo