Exploit for #VU90113 Cross-site scripting in Apache Struts

Exploit for #VU90113 Cross-site scripting in Apache Struts

Published: 2024-05-31

Vulnerability identifier: #VU90113

Vulnerability risk: Low

CVSSv3.1: 3.1 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2011-1772

CWE-ID: CWE-79

Exploitation vector: Network

Exploits in database: 1

May 31, 2024
- Apache Struts 2.0.0 < 2.2.1.1 - XWork 's:submit' HTML Tag Cross-Site Scripting [Exploit-DB]

Impact: Data manipulation

Vulnerable software:
Apache Struts
Server applications / Frameworks for developing and running applications

Vendor: