VulnerableCode Package Details - pkg:maven/org.apache.struts/struts-master@2.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/org.apache.struts/struts-master@2.0

purl	pkg:maven/org.apache.struts/struts-master@2.0
Tags	Ghost

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	3.1

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-6hrc-fm64-ckhf Aliases: CVE-2016-2162 GHSA-2j4q-9fff-236j	Apache Struts 2.x before 2.3.25 does not sanitize text in the Locale object constructed by I18NInterceptor, which might allow remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors involving language display.	2.3.25 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-03T21:26:00.582251+00:00	GitLab Importer	Affected by	VCID-6hrc-fm64-ckhf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts-master/CVE-2016-2162.yml	38.1.0