Apache Struts CVE-2015-1831 Vulnerability
Description
Wrong default exclude patterns were introduced in version 2.3.20 of Struts, if default settings are used, the attacker can compromise internal application's state.
Affected Applications
Apache Struts