VulnerableCode Package Details - pkg:deb/debian/libstruts1.2-java@1.2.9-4%2Bdeb6u2

Search for packages

Vulnerability	Summary	Fixed by
VCID-nur4-1g8a-57ew Aliases: CVE-2014-0114 GHSA-p66x-2cv9-qq3v	Improper Input Validation Apache Commons BeanUtils does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the `ActionForm` object in Struts	1.2.9-5+deb7u2 Affected by 0 other vulnerabilities.
VCID-s3uq-35pj-byhy Aliases: CVE-2015-0899 GHSA-cvvx-r33m-v7pq	The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page parameter.	1.2.9-5+deb7u2 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-nur4-1g8a-57ew
Aliases:
CVE-2014-0114
GHSA-p66x-2cv9-qq3v

Improper Input Validation Apache Commons BeanUtils does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the `ActionForm` object in Struts

1.2.9-5+deb7u2
Affected by 0 other vulnerabilities.

VCID-s3uq-35pj-byhy
Aliases:
CVE-2015-0899
GHSA-cvvx-r33m-v7pq

The MultiPageValidator implementation in Apache Struts 1 1.1 through 1.3.10 allows remote attackers to bypass intended access restrictions via a modified page parameter.

1.2.9-5+deb7u2
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-15T13:01:20.641633+00:00	Debian Oval Importer	Affected by	VCID-s3uq-35pj-byhy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-15T12:48:40.340342+00:00	Debian Oval Importer	Affected by	VCID-nur4-1g8a-57ew	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.4.0
2026-04-11T12:50:39.911259+00:00	Debian Oval Importer	Affected by	VCID-s3uq-35pj-byhy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-11T12:37:06.332809+00:00	Debian Oval Importer	Affected by	VCID-nur4-1g8a-57ew	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.3.0
2026-04-03T22:06:17.727805+00:00	Debian Oval Importer	Affected by	VCID-s3uq-35pj-byhy	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0
2026-04-03T21:46:51.137545+00:00	Debian Oval Importer	Affected by	VCID-nur4-1g8a-57ew	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.1.0
2026-04-02T12:52:56.868955+00:00	Debian Oval Importer	Affected by	VCID-nur4-1g8a-57ew	https://www.debian.org/security/oval/oval-definitions-wheezy.xml.bz2	38.0.0