CVE-2011-3923

Summary

Apache Struts before 2.3.1.2 allows remote attackers to bypass security protections in the ParameterInterceptor class and execute arbitrary commands.

Affected Software

VendorProductVersion RangeStatus
ApacheStruts2.3.1.2affected

Weaknesses

  • Other

ADP Enrichment

CVE Program Container

Additional References

References