CVE-2017-5638, also known as 'Struts Equation Type Command Injection&#

What is apache struts cve 2017 5638?

Question Posted / Vipra Choudhary

1 Answers
1065 Views
I also Faced
E-Mail Answers

Answer Posted / Vipra Choudhary

CVE-2017-5638, also known as 'Struts Equation Type Command Injection', is a critical vulnerability in the Apache Struts framework that allows attackers to execute arbitrary code on a server running a vulnerable version of Struts by injecting malicious content into certain request parameters.

Is This Answer Correct ?

0 Yes

0 No

Post New Answer View All Answers

Please Help Members By Posting Answers For Below Questions

What do you know about validation plugin ?

1027

What are the contents on web.xml in struts application ?

1063

What is action chaining ?

1162

What is the difference between filters and interceptors ?

1309

How is declarative handling of exceptions done in struts ?

1003