CVE-2008-6504 – com.opensymphony:xwork

Package

Manager: maven
Name: com.opensymphony:xwork
Vulnerable Version: >=0 <2.0.6 || >=2.1.0 <2.1.2

Severity

Level: Medium

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

EPSS: 0.65077 pctl0.9842

Details

Improper Input Validation in OpenSymphony XWork ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Apache Struts and other products, does not properly restrict # (pound sign) references to context objects, which allows remote attackers to execute Object-Graph Navigation Language (OGNL) statements and modify server-side context objects, as demonstrated by use of a \u0023 representation for the # character.

Metadata

Created: 2022-05-17T02:11:15Z
Modified: 2022-11-01T22:34:44Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-wxw2-2mx5-c5qf/GHSA-wxw2-2mx5-c5qf.json
CWE IDs: ["CWE-20"]
Alternative ID: GHSA-wxw2-2mx5-c5qf
Finding: F184
Auto approve: 1