Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.apache.struts/struts2-core@7.1.1
purl pkg:maven/org.apache.struts/struts2-core@7.1.1
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-95ts-vpk6-uubg Apache Struts has a Denial of Service vulnerability Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion. This issue affects Apache Struts: from 2.0.0 through 6.7.4, from 7.0.0 through 7.0.3. Users are recommended to upgrade to version 6.8.0 or 7.1.1, which fixes the issue. CVE-2025-66675
GHSA-rg58-xhh7-mqjw
VCID-j8jv-hzsy-nyec Apache Struts is Vulnerable to DoS via File Leak Denial of Service vulnerability in Apache Struts, file leak in multipart request processing causes disk exhaustion. This issue affects Apache Struts: from 2.0.0 through 6.7.0, from 7.0.0 through 7.0.3. Users are recommended to upgrade to version 6.8.0 or 7.1.1, which fixes the issue. CVE-2025-64775
GHSA-xx7v-hqxh-cjr9

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-17T00:02:17.999436+00:00 GitLab Importer Fixing VCID-95ts-vpk6-uubg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-66675.yml 38.4.0
2026-04-17T00:00:38.733648+00:00 GitLab Importer Fixing VCID-j8jv-hzsy-nyec https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-64775.yml 38.4.0
2026-04-12T01:25:18.978514+00:00 GitLab Importer Fixing VCID-95ts-vpk6-uubg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-66675.yml 38.3.0
2026-04-12T01:23:28.848469+00:00 GitLab Importer Fixing VCID-j8jv-hzsy-nyec https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-64775.yml 38.3.0
2026-04-03T01:33:57.144245+00:00 GitLab Importer Fixing VCID-95ts-vpk6-uubg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-66675.yml 38.1.0
2026-04-03T01:32:09.415837+00:00 GitLab Importer Fixing VCID-j8jv-hzsy-nyec https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-64775.yml 38.1.0
2026-04-01T16:07:18.546562+00:00 GHSA Importer Fixing VCID-95ts-vpk6-uubg https://github.com/advisories/GHSA-rg58-xhh7-mqjw 38.0.0
2026-04-01T16:07:13.059880+00:00 GHSA Importer Fixing VCID-j8jv-hzsy-nyec https://github.com/advisories/GHSA-xx7v-hqxh-cjr9 38.0.0
2026-04-01T12:55:39.956700+00:00 GithubOSV Importer Fixing VCID-j8jv-hzsy-nyec https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/12/GHSA-xx7v-hqxh-cjr9/GHSA-xx7v-hqxh-cjr9.json 38.0.0
2026-04-01T12:55:36.818980+00:00 GithubOSV Importer Fixing VCID-95ts-vpk6-uubg https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/12/GHSA-rg58-xhh7-mqjw/GHSA-rg58-xhh7-mqjw.json 38.0.0
2026-04-01T12:53:29.761772+00:00 GitLab Importer Fixing VCID-95ts-vpk6-uubg https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-66675.yml 38.0.0
2026-04-01T12:53:26.210737+00:00 GitLab Importer Fixing VCID-j8jv-hzsy-nyec https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-core/CVE-2025-64775.yml 38.0.0