Apache Struts CVE-2013-1965 Code Injection Vulnerability

description-logoDescription

OGNL provides, among other features, extensive expressionevaluation capabilities.A request that included a specially crafted request parameter could be used to inject arbitrary OGNL code into a property, afterward used as request parameter of a redirect address, which will cause a further evaluation.

affected-products-logoAffected Applications

Apache Struts

CVE References

CVE-2013-1965