by @jakaba
15 Dec 2023

Apache Struts RCE (CVE-2023-50164)

by @jakaba
15 Dec 2023

Apache Struts RCE (CVE-2023-50164)

CVEs

N/A Severity
9.8 Critical Severity

Apps

S
Spider-FlowSsssssss
*.*
0.5.0.*
0.4.3.*

PoC video

Summary

A critical security vulnerability, identified as CVE-2023-50164 (CVE: 9.8) was found in Apache Struts, allowing attackers to manipulate file upload parameters that can potentially lead to unauthorized path traversal and remote code execution (RCE).

Description

users/photos/clj8b3h1k16g10uoihwvzgsxi.png

@jakaba

74 posts

Total vcoins

64.3K

Social media links

Comments (0)