struts2 vulnerability
[+]10 S2-045 CVE-2017-5638 Support GetShell/Get physical path/Execute CMD command
[+]9 devMode CVE-xxxx-xxxx Support GetShell/Get physical path/Execute CMD command
[+]8 S2-037 CVE -2016-4438 Support GetShell/Get physical path/Execute CMD command
[+]7 S2-032 CVE-2016-3081 Support GetShell/Get physical path/Execute CMD command
[+]6 S2-020 CVE-2014-0094 Support GetShell (This hole is special, EXP is integrated in the flying knife)
[+]5 S2-019 CVE-2013-4316 Support GetShell/Get physical path/Execute CMD command
[+]4 S2-016 CVE-2013-2251 Support GetShell/Get physical Path/Execute CMD Command
[+]3 S2-013 CVE-2013-1966 Support GetShell/Get Physical Path/Execute CMD Command
[+]2 S2-009 CVE-2011-3923 Support GetShell/Get Physical Path/Execute CMD Command
[ +]1 S2-005 CVE-2010-1870 Support GetShell/Get physical path/Execute CMD command/List file directory
========================= ===================================================== ===============
10 CVE-2017-5638 Affected Versions: Struts 2.3.5 - 2.3.31 And 2.5 - 2.5.10 Official Announcement: https://cwiki.apache.org/confluence/display/WW/S2-045
8 CVE-2016- 4438 Versions affected: Struts 2.3.20 - Struts 2.3.28.1 Official announcement: http://struts.apache.org/docs/s2-037.html
7 CVE-2016-3081 Versions affected: Struts 2.3.18 – Struts 2.3. 28 Official Announcement: http://struts.apache.org/docs/s2-032.html
6 CVE-2014-0094 Affected Versions: Struts 2.0.0 – Struts 2.3.16 Official Announcement: http://struts.apache. org/docs/s2-020.html
5 CVE-2013-4316 Affected Versions: Struts 2.0.0 – Struts 2.3.15.1 Official Announcement: http://struts.apache.org/docs/s2-019.html
4 CVE- 2013-2251 Versions affected: Struts 2.0.0 – Struts 2.3.15 Official announcement: http://struts.apache.org/docs/s2-016.html
3 CVE-2013-1966 Versions affected: Struts 2.0.0 – Struts 2.3.14 Official announcement: http://struts.apache.org/docs/s2-013.html
2 CVE-2011-3923 Affected Versions: Struts 2.0.0 - Struts 2.3.1.1 Official Announcement: http://struts.apache.org/docs/s2-009.html
1 CVE-2010-1870 Affected Versions: Struts 2.0. 0 – Struts 2.1.8.1 Official Announcement: http://struts.apache.org/docs/s2-005.htmlDownload
Kit
http://filemarkets.com/fs/8l2i2abz1h3ocua9/
Guess you like
Origin http://10.200.1.11:23101/article/api/json?id=326907188&siteId=291194637
Ranking