virus logo FortiClient Vulnerability

Apache Struts CVE-2013-2248 Input Validation Bypass Vulnerability

description-logoDescription

The Struts 2 DefaultActionMapper used to support a method for short-circuit navigation state changes by prefixing parameters with "redirect:" or "redirectAction:", followed by a desired redirect target expression. This mechanism was intended to help with attaching navigational information to buttons within forms.

affected-products-logoAffected Applications

Apache Struts

CVE References

CVE-2013-2248

Other References

https://cwiki.apache.org/confluence/display/WW/Security+Bulletins
ID 41606
Created Jan 17, 2020
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Apache
Patch manual
Application Apache Struts