CVE 2013-4316
Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.
See the 
CVE page on Mitre.org
for more details.
Launchpad.net
References
- BUGTRAQ: 20130921 [ANN] Struts ...
- CONFIRM: http://struts.apache.o...
- SECTRACK: 1029078
- CONFIRM: http://www.oracle.com/...
- BID: 64758
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
7020100
(Get the code!)