Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-d8as-n8hc-j3fj
Summary
Apache Struts directory traversal vulnerability
Multiple directory traversal vulnerabilities in Apache Struts 2.0.x before 2.0.12 and 2.1.x before 2.1.3 allow remote attackers to read arbitrary files via a `..%252f` (encoded dot dot slash) in a URI with a /struts/ path, related to (1) FilterDispatcher in 2.0.x and (2) DefaultStaticContentLoader in 2.1.x.
Aliases
0
alias CVE-2008-6505
1
alias GHSA-wv7g-xhvw-8hcp
Fixed_packages
0
url pkg:maven/org.apache.struts/struts2-core@2.0.12
purl pkg:maven/org.apache.struts/struts2-core@2.0.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-dk2f-14xj-9bf8
20
vulnerability VCID-evh9-mua1-2bem
21
vulnerability VCID-fv6w-cdtc-kkhx
22
vulnerability VCID-gfxq-vtry-bqgg
23
vulnerability VCID-gv5f-auvz-5fda
24
vulnerability VCID-h4yg-zrv6-aqa1
25
vulnerability VCID-hgj2-vqzn-gyeb
26
vulnerability VCID-hkjh-35ye-1ugj
27
vulnerability VCID-j5su-cnqd-6yad
28
vulnerability VCID-k6mz-k1yb-4uej
29
vulnerability VCID-kdsa-599r-eud7
30
vulnerability VCID-me84-wy85-hkf5
31
vulnerability VCID-n2dn-bnjc-13gp
32
vulnerability VCID-n4fb-crnk-eugz
33
vulnerability VCID-nmgp-r7hb-5ke1
34
vulnerability VCID-q96z-v3bs-k3dg
35
vulnerability VCID-qqm4-frqy-bua5
36
vulnerability VCID-r28t-sdc5-kbga
37
vulnerability VCID-tcaj-6bcg-k7g2
38
vulnerability VCID-tgd1-s1yg-9fdt
39
vulnerability VCID-vgp6-jxqt-pbf4
40
vulnerability VCID-vkb9-11h4-dugp
41
vulnerability VCID-vnkw-9fa2-zqcm
42
vulnerability VCID-x65e-31g3-77bp
43
vulnerability VCID-xz41-1z86-37ew
44
vulnerability VCID-y5uq-a6dx-3yd4
45
vulnerability VCID-ygbu-vb2t-jqhx
46
vulnerability VCID-z1gf-169n-m3af
47
vulnerability VCID-zb3c-gnyc-yug8
48
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.12
1
url pkg:maven/org.apache.struts/struts2-core@2.1.6
purl pkg:maven/org.apache.struts/struts2-core@2.1.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-bgbt-j1n9-6yg5
19
vulnerability VCID-cm62-bsdz-yye2
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-tcaj-6bcg-k7g2
39
vulnerability VCID-tgd1-s1yg-9fdt
40
vulnerability VCID-vgp6-jxqt-pbf4
41
vulnerability VCID-vkb9-11h4-dugp
42
vulnerability VCID-vnkw-9fa2-zqcm
43
vulnerability VCID-x65e-31g3-77bp
44
vulnerability VCID-xz41-1z86-37ew
45
vulnerability VCID-y5uq-a6dx-3yd4
46
vulnerability VCID-ygbu-vb2t-jqhx
47
vulnerability VCID-z1gf-169n-m3af
48
vulnerability VCID-zb3c-gnyc-yug8
49
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.1.6
Affected_packages
0
url pkg:maven/org.apache.struts/struts2-core@2.0.0
purl pkg:maven/org.apache.struts/struts2-core@2.0.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rjv-1thm-dugt
1
vulnerability VCID-3yq7-n972-j7dh
2
vulnerability VCID-4agy-6nsx-7ufh
3
vulnerability VCID-6241-shkt-s7ew
4
vulnerability VCID-6hrc-fm64-ckhf
5
vulnerability VCID-79j9-v8gz-rfax
6
vulnerability VCID-8bsh-bshc-vkgq
7
vulnerability VCID-95ts-vpk6-uubg
8
vulnerability VCID-at5c-f8p8-67fh
9
vulnerability VCID-b59n-uxft-4qgz
10
vulnerability VCID-d8as-n8hc-j3fj
11
vulnerability VCID-fv6w-cdtc-kkhx
12
vulnerability VCID-gfxq-vtry-bqgg
13
vulnerability VCID-hgj2-vqzn-gyeb
14
vulnerability VCID-hkjh-35ye-1ugj
15
vulnerability VCID-j5su-cnqd-6yad
16
vulnerability VCID-j8jv-hzsy-nyec
17
vulnerability VCID-k6mz-k1yb-4uej
18
vulnerability VCID-kdsa-599r-eud7
19
vulnerability VCID-p9xh-frm5-8ucp
20
vulnerability VCID-skbn-jggt-uffg
21
vulnerability VCID-tgd1-s1yg-9fdt
22
vulnerability VCID-vkb9-11h4-dugp
23
vulnerability VCID-vnkw-9fa2-zqcm
24
vulnerability VCID-ygbu-vb2t-jqhx
25
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.0
1
url pkg:maven/org.apache.struts/struts2-core@2.0.5
purl pkg:maven/org.apache.struts/struts2-core@2.0.5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-d8as-n8hc-j3fj
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-skbn-jggt-uffg
39
vulnerability VCID-tcaj-6bcg-k7g2
40
vulnerability VCID-tgd1-s1yg-9fdt
41
vulnerability VCID-vgp6-jxqt-pbf4
42
vulnerability VCID-vkb9-11h4-dugp
43
vulnerability VCID-vnkw-9fa2-zqcm
44
vulnerability VCID-x65e-31g3-77bp
45
vulnerability VCID-xz41-1z86-37ew
46
vulnerability VCID-y5uq-a6dx-3yd4
47
vulnerability VCID-ygbu-vb2t-jqhx
48
vulnerability VCID-z1gf-169n-m3af
49
vulnerability VCID-zb3c-gnyc-yug8
50
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.5
2
url pkg:maven/org.apache.struts/struts2-core@2.0.6
purl pkg:maven/org.apache.struts/struts2-core@2.0.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-d8as-n8hc-j3fj
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-skbn-jggt-uffg
39
vulnerability VCID-tcaj-6bcg-k7g2
40
vulnerability VCID-tgd1-s1yg-9fdt
41
vulnerability VCID-vgp6-jxqt-pbf4
42
vulnerability VCID-vkb9-11h4-dugp
43
vulnerability VCID-vnkw-9fa2-zqcm
44
vulnerability VCID-x65e-31g3-77bp
45
vulnerability VCID-xz41-1z86-37ew
46
vulnerability VCID-y5uq-a6dx-3yd4
47
vulnerability VCID-ygbu-vb2t-jqhx
48
vulnerability VCID-z1gf-169n-m3af
49
vulnerability VCID-zb3c-gnyc-yug8
50
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.6
3
url pkg:maven/org.apache.struts/struts2-core@2.0.8
purl pkg:maven/org.apache.struts/struts2-core@2.0.8
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-d8as-n8hc-j3fj
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-skbn-jggt-uffg
39
vulnerability VCID-tcaj-6bcg-k7g2
40
vulnerability VCID-tgd1-s1yg-9fdt
41
vulnerability VCID-vgp6-jxqt-pbf4
42
vulnerability VCID-vkb9-11h4-dugp
43
vulnerability VCID-vnkw-9fa2-zqcm
44
vulnerability VCID-x65e-31g3-77bp
45
vulnerability VCID-xz41-1z86-37ew
46
vulnerability VCID-y5uq-a6dx-3yd4
47
vulnerability VCID-ygbu-vb2t-jqhx
48
vulnerability VCID-z1gf-169n-m3af
49
vulnerability VCID-zb3c-gnyc-yug8
50
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.8
4
url pkg:maven/org.apache.struts/struts2-core@2.0.9
purl pkg:maven/org.apache.struts/struts2-core@2.0.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-d8as-n8hc-j3fj
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-skbn-jggt-uffg
39
vulnerability VCID-tcaj-6bcg-k7g2
40
vulnerability VCID-tgd1-s1yg-9fdt
41
vulnerability VCID-vgp6-jxqt-pbf4
42
vulnerability VCID-vkb9-11h4-dugp
43
vulnerability VCID-vnkw-9fa2-zqcm
44
vulnerability VCID-x65e-31g3-77bp
45
vulnerability VCID-xz41-1z86-37ew
46
vulnerability VCID-y5uq-a6dx-3yd4
47
vulnerability VCID-ygbu-vb2t-jqhx
48
vulnerability VCID-z1gf-169n-m3af
49
vulnerability VCID-zb3c-gnyc-yug8
50
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.9
5
url pkg:maven/org.apache.struts/struts2-core@2.0.11
purl pkg:maven/org.apache.struts/struts2-core@2.0.11
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-d8as-n8hc-j3fj
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-skbn-jggt-uffg
39
vulnerability VCID-tcaj-6bcg-k7g2
40
vulnerability VCID-tgd1-s1yg-9fdt
41
vulnerability VCID-vgp6-jxqt-pbf4
42
vulnerability VCID-vkb9-11h4-dugp
43
vulnerability VCID-vnkw-9fa2-zqcm
44
vulnerability VCID-x65e-31g3-77bp
45
vulnerability VCID-xz41-1z86-37ew
46
vulnerability VCID-y5uq-a6dx-3yd4
47
vulnerability VCID-ygbu-vb2t-jqhx
48
vulnerability VCID-z1gf-169n-m3af
49
vulnerability VCID-zb3c-gnyc-yug8
50
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.11
6
url pkg:maven/org.apache.struts/struts2-core@2.0.11.1
purl pkg:maven/org.apache.struts/struts2-core@2.0.11.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-d8as-n8hc-j3fj
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-tcaj-6bcg-k7g2
39
vulnerability VCID-tgd1-s1yg-9fdt
40
vulnerability VCID-vgp6-jxqt-pbf4
41
vulnerability VCID-vkb9-11h4-dugp
42
vulnerability VCID-vnkw-9fa2-zqcm
43
vulnerability VCID-x65e-31g3-77bp
44
vulnerability VCID-xz41-1z86-37ew
45
vulnerability VCID-y5uq-a6dx-3yd4
46
vulnerability VCID-ygbu-vb2t-jqhx
47
vulnerability VCID-z1gf-169n-m3af
48
vulnerability VCID-zb3c-gnyc-yug8
49
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.11.1
7
url pkg:maven/org.apache.struts/struts2-core@2.0.11.2
purl pkg:maven/org.apache.struts/struts2-core@2.0.11.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-cm62-bsdz-yye2
19
vulnerability VCID-d8as-n8hc-j3fj
20
vulnerability VCID-dk2f-14xj-9bf8
21
vulnerability VCID-evh9-mua1-2bem
22
vulnerability VCID-fv6w-cdtc-kkhx
23
vulnerability VCID-gfxq-vtry-bqgg
24
vulnerability VCID-gv5f-auvz-5fda
25
vulnerability VCID-h4yg-zrv6-aqa1
26
vulnerability VCID-hgj2-vqzn-gyeb
27
vulnerability VCID-hkjh-35ye-1ugj
28
vulnerability VCID-j5su-cnqd-6yad
29
vulnerability VCID-k6mz-k1yb-4uej
30
vulnerability VCID-kdsa-599r-eud7
31
vulnerability VCID-me84-wy85-hkf5
32
vulnerability VCID-n2dn-bnjc-13gp
33
vulnerability VCID-n4fb-crnk-eugz
34
vulnerability VCID-nmgp-r7hb-5ke1
35
vulnerability VCID-q96z-v3bs-k3dg
36
vulnerability VCID-qqm4-frqy-bua5
37
vulnerability VCID-r28t-sdc5-kbga
38
vulnerability VCID-tcaj-6bcg-k7g2
39
vulnerability VCID-tgd1-s1yg-9fdt
40
vulnerability VCID-vgp6-jxqt-pbf4
41
vulnerability VCID-vkb9-11h4-dugp
42
vulnerability VCID-vnkw-9fa2-zqcm
43
vulnerability VCID-x65e-31g3-77bp
44
vulnerability VCID-xz41-1z86-37ew
45
vulnerability VCID-y5uq-a6dx-3yd4
46
vulnerability VCID-ygbu-vb2t-jqhx
47
vulnerability VCID-z1gf-169n-m3af
48
vulnerability VCID-zb3c-gnyc-yug8
49
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.0.11.2
8
url pkg:maven/org.apache.struts/struts2-core@2.1.0
purl pkg:maven/org.apache.struts/struts2-core@2.1.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2rjv-1thm-dugt
1
vulnerability VCID-579w-2k2v-efa2
2
vulnerability VCID-d8as-n8hc-j3fj
3
vulnerability VCID-skbn-jggt-uffg
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.1.0
9
url pkg:maven/org.apache.struts/struts2-core@2.1.2
purl pkg:maven/org.apache.struts/struts2-core@2.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-2chz-36wn-9fcv
1
vulnerability VCID-2rjv-1thm-dugt
2
vulnerability VCID-2v7h-fght-cugn
3
vulnerability VCID-3yq7-n972-j7dh
4
vulnerability VCID-4agy-6nsx-7ufh
5
vulnerability VCID-579w-2k2v-efa2
6
vulnerability VCID-6241-shkt-s7ew
7
vulnerability VCID-6hrc-fm64-ckhf
8
vulnerability VCID-6t1x-s2k2-b7bq
9
vulnerability VCID-759g-hsfg-97f8
10
vulnerability VCID-79j9-v8gz-rfax
11
vulnerability VCID-87fh-rvvb-6ubq
12
vulnerability VCID-8bsh-bshc-vkgq
13
vulnerability VCID-8mws-fbmg-cqa9
14
vulnerability VCID-95ts-vpk6-uubg
15
vulnerability VCID-at5c-f8p8-67fh
16
vulnerability VCID-b59n-uxft-4qgz
17
vulnerability VCID-b7zy-qhz9-tuar
18
vulnerability VCID-bgbt-j1n9-6yg5
19
vulnerability VCID-cm62-bsdz-yye2
20
vulnerability VCID-d8as-n8hc-j3fj
21
vulnerability VCID-dk2f-14xj-9bf8
22
vulnerability VCID-evh9-mua1-2bem
23
vulnerability VCID-fv6w-cdtc-kkhx
24
vulnerability VCID-gfxq-vtry-bqgg
25
vulnerability VCID-gv5f-auvz-5fda
26
vulnerability VCID-h4yg-zrv6-aqa1
27
vulnerability VCID-hgj2-vqzn-gyeb
28
vulnerability VCID-hkjh-35ye-1ugj
29
vulnerability VCID-j5su-cnqd-6yad
30
vulnerability VCID-k6mz-k1yb-4uej
31
vulnerability VCID-kdsa-599r-eud7
32
vulnerability VCID-me84-wy85-hkf5
33
vulnerability VCID-n2dn-bnjc-13gp
34
vulnerability VCID-n4fb-crnk-eugz
35
vulnerability VCID-nmgp-r7hb-5ke1
36
vulnerability VCID-q96z-v3bs-k3dg
37
vulnerability VCID-qqm4-frqy-bua5
38
vulnerability VCID-r28t-sdc5-kbga
39
vulnerability VCID-tcaj-6bcg-k7g2
40
vulnerability VCID-tgd1-s1yg-9fdt
41
vulnerability VCID-vgp6-jxqt-pbf4
42
vulnerability VCID-vkb9-11h4-dugp
43
vulnerability VCID-vnkw-9fa2-zqcm
44
vulnerability VCID-x65e-31g3-77bp
45
vulnerability VCID-xz41-1z86-37ew
46
vulnerability VCID-y5uq-a6dx-3yd4
47
vulnerability VCID-ygbu-vb2t-jqhx
48
vulnerability VCID-z1gf-169n-m3af
49
vulnerability VCID-zb3c-gnyc-yug8
50
vulnerability VCID-zxww-8kb3-tufv
resource_url http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.1.2
References
0
reference_url http://issues.apache.org/struts/browse/WW-2779
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://issues.apache.org/struts/browse/WW-2779
1
reference_url http://osvdb.org/49733
reference_id
reference_type
scores
url http://osvdb.org/49733
2
reference_url http://osvdb.org/49734
reference_id
reference_type
scores
url http://osvdb.org/49734
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2008-6505
reference_id
reference_type
scores
0
value 0.82879
scoring_system epss
scoring_elements 0.99252
published_at 2026-04-21T12:55:00Z
1
value 0.82879
scoring_system epss
scoring_elements 0.99251
published_at 2026-04-12T12:55:00Z
2
value 0.82879
scoring_system epss
scoring_elements 0.9925
published_at 2026-04-13T12:55:00Z
3
value 0.82879
scoring_system epss
scoring_elements 0.99249
published_at 2026-04-08T12:55:00Z
4
value 0.82879
scoring_system epss
scoring_elements 0.99248
published_at 2026-04-07T12:55:00Z
5
value 0.82879
scoring_system epss
scoring_elements 0.99244
published_at 2026-04-04T12:55:00Z
6
value 0.82879
scoring_system epss
scoring_elements 0.9924
published_at 2026-04-01T12:55:00Z
7
value 0.82879
scoring_system epss
scoring_elements 0.99242
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2008-6505
4
reference_url http://secunia.com/advisories/32497
reference_id
reference_type
scores
url http://secunia.com/advisories/32497
5
reference_url https://github.com/apache/struts
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/struts
6
reference_url https://github.com/apache/struts/commit/04fcefa44bae1263c7cad6986a9dafed67f0164f
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/struts/commit/04fcefa44bae1263c7cad6986a9dafed67f0164f
7
reference_url https://github.com/apache/struts/commit/1f1c996eb1f0f3e2193fba0075f62ccd04e3c0c3
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/apache/struts/commit/1f1c996eb1f0f3e2193fba0075f62ccd04e3c0c3
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2008-6505
reference_id
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2008-6505
9
reference_url http://struts.apache.org/2.x/docs/s2-004.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://struts.apache.org/2.x/docs/s2-004.html
10
reference_url https://web.archive.org/web/20081208214512/http://secunia.com/advisories/32497
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20081208214512/http://secunia.com/advisories/32497
11
reference_url https://web.archive.org/web/20111025094319/http://www.securityfocus.com/bid/32104
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20111025094319/http://www.securityfocus.com/bid/32104
12
reference_url http://www.securityfocus.com/bid/32104
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/32104
13
reference_url http://www.vupen.com/english/advisories/2008/3003
reference_id
reference_type
scores
url http://www.vupen.com/english/advisories/2008/3003
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:struts:2.0.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.11:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.11.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:struts:2.0.11.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.11.1:*:*:*:*:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.11.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:struts:2.0.11.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.11.2:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:struts:2.0.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.6:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:struts:2.0.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.8:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:struts:2.0.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.0.9:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.1.2_beta:*:*:*:*:*:*:*
reference_id cpe:2.3:a:apache:struts:2.1.2_beta:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:apache:struts:2.1.2_beta:*:*:*:*:*:*:*
21
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/32565.txt
reference_id CVE-2008-6505;OSVDB-49734
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/remote/32565.txt
22
reference_url https://www.securityfocus.com/bid/32104/info
reference_id CVE-2008-6505;OSVDB-49734
reference_type exploit
scores
url https://www.securityfocus.com/bid/32104/info
23
reference_url https://github.com/advisories/GHSA-wv7g-xhvw-8hcp
reference_id GHSA-wv7g-xhvw-8hcp
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-wv7g-xhvw-8hcp
Weaknesses
0
cwe_id 22
name Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
description The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
1
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
0
date_added 2008-11-04
description Struts 2.0.11 - Multiple Directory Traversal Vulnerabilities
required_action null
due_date null
notes null
known_ransomware_campaign_use true
source_date_published 2008-11-04
exploit_type remote
platform multiple
source_date_updated 2014-03-28
data_source Exploit-DB
source_url https://www.securityfocus.com/bid/32104/info
Severity_range_score4.0 - 6.9
Exploitability2.0
Weighted_severity6.2
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-d8as-n8hc-j3fj