Apache Struts versions 2.5 through 2.5.12 using the REST plugin are vulnerable to a Java deserialization attack in the XStream library.
733707ff1693492ed26a3fc45635dfec661cbb6f0cba034160e94e43f171f6b9
© 2022 Packet Storm. All rights reserved.