{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/38855?format=json","vulnerability_id":"VCID-cv6j-98vx-n3ed","summary":"Path Traversal\nIn the Convention plugin in Apache Struts, it is possible to prepare a special URL which will be used for path traversal and execution of arbitrary code on server side.","aliases":[{"alias":"CVE-2016-6795"},{"alias":"GHSA-44hv-jjx7-qfjg"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/54128?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.31","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.31"},{"url":"http://public2.vulnerablecode.io/api/packages/153022?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.5.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.5.5"},{"url":"http://public2.vulnerablecode.io/api/packages/63021?format=json","purl":"pkg:maven/org.apache.struts/struts2-core@2.3.31","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-7uv9-4vy7-ryd1"},{"vulnerability":"VCID-dj42-wym9-nbhv"},{"vulnerability":"VCID-dvxu-9sh6-qbef"},{"vulnerability":"VCID-hrky-nmnv-g3eu"},{"vulnerability":"VCID-mmth-7rgf-aqfa"},{"vulnerability":"VCID-vztu-pap6-37ev"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.3.31"},{"url":"http://public2.vulnerablecode.io/api/packages/53733?format=json","purl":"pkg:maven/org.apache.struts/struts2-core@2.5.5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-21k4-5a8r-7bd9"},{"vulnerability":"VCID-7uv9-4vy7-ryd1"},{"vulnerability":"VCID-dj42-wym9-nbhv"},{"vulnerability":"VCID-dvxu-9sh6-qbef"},{"vulnerability":"VCID-hrky-nmnv-g3eu"},{"vulnerability":"VCID-mmth-7rgf-aqfa"},{"vulnerability":"VCID-vztu-pap6-37ev"},{"vulnerability":"VCID-ybuw-727z-r3eb"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.5.5"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/54120?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.20","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.20"},{"url":"http://public2.vulnerablecode.io/api/packages/213043?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.20.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.20.1"},{"url":"http://public2.vulnerablecode.io/api/packages/54121?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.20.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.20.3"},{"url":"http://public2.vulnerablecode.io/api/packages/54122?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.21","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.21"},{"url":"http://public2.vulnerablecode.io/api/packages/213044?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.24","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.24"},{"url":"http://public2.vulnerablecode.io/api/packages/213045?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.24.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.24.1"},{"url":"http://public2.vulnerablecode.io/api/packages/54123?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.24.3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.24.3"},{"url":"http://public2.vulnerablecode.io/api/packages/54124?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.25","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.25"},{"url":"http://public2.vulnerablecode.io/api/packages/213046?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.28","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.28"},{"url":"http://public2.vulnerablecode.io/api/packages/54125?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.28.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.28.1"},{"url":"http://public2.vulnerablecode.io/api/packages/54126?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.29","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.29"},{"url":"http://public2.vulnerablecode.io/api/packages/54127?format=json","purl":"pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.30","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-nztp-y8p8-cqc6"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-convention-plugin@2.3.30"},{"url":"http://public2.vulnerablecode.io/api/packages/56818?format=json","purl":"pkg:maven/org.apache.struts/struts2-core@2.3.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-vztu-pap6-37ev"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.3.0"},{"url":"http://public2.vulnerablecode.io/api/packages/56819?format=json","purl":"pkg:maven/org.apache.struts/struts2-core@2.5.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-16yc-2abk-1yd2"},{"vulnerability":"VCID-21k4-5a8r-7bd9"},{"vulnerability":"VCID-8cmt-z8g9-duf2"},{"vulnerability":"VCID-cv6j-98vx-n3ed"},{"vulnerability":"VCID-dvxu-9sh6-qbef"},{"vulnerability":"VCID-hrky-nmnv-g3eu"},{"vulnerability":"VCID-mmth-7rgf-aqfa"},{"vulnerability":"VCID-vztu-pap6-37ev"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:maven/org.apache.struts/struts2-core@2.5.0"}],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6795","reference_id":"","reference_type":"","scores":[{"value":"0.04732","scoring_system":"epss","scoring_elements":"0.89589","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2016-6795"},{"reference_url":"https://github.com/apache/struts","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/struts"},{"reference_url":"https://github.com/apache/struts/commit/030ffa33543f8953306ed0c0dc815c7fb74d7129","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/apache/struts/commit/030ffa33543f8953306ed0c0dc815c7fb74d7129"},{"reference_url":"https://github.com/apache/struts/commit/8e67b9144aa643769b261e2492cb561e04d016ab","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/struts/commit/8e67b9144aa643769b261e2492cb561e04d016ab"},{"reference_url":"https://github.com/apache/struts/commit/c1869f4989942dd33fa4e189e0ac1f766fb5ac14","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/apache/struts/commit/c1869f4989942dd33fa4e189e0ac1f766fb5ac14"},{"reference_url":"https://security.netapp.com/advisory/ntap-20180629-0003","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://security.netapp.com/advisory/ntap-20180629-0003"},{"reference_url":"https://security.netapp.com/advisory/ntap-20180629-0003/","reference_id":"","reference_type":"","scores":[],"url":"https://security.netapp.com/advisory/ntap-20180629-0003/"},{"reference_url":"https://struts.apache.org/docs/s2-042.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://struts.apache.org/docs/s2-042.html"},{"reference_url":"https://web.archive.org/web/20200227214705/http://www.securityfocus.com/bid/93773","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://web.archive.org/web/20200227214705/http://www.securityfocus.com/bid/93773"},{"reference_url":"http://www.securityfocus.com/bid/93773","reference_id":"","reference_type":"","scores":[],"url":"http://www.securityfocus.com/bid/93773"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2016-6795","reference_id":"CVE-2016-6795","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2016-6795"},{"reference_url":"https://github.com/advisories/GHSA-44hv-jjx7-qfjg","reference_id":"GHSA-44hv-jjx7-qfjg","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-44hv-jjx7-qfjg"}],"weaknesses":[{"cwe_id":1035,"name":"OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017."},{"cwe_id":22,"name":"Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","description":"The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory."},{"cwe_id":937,"name":"OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities","description":"Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013."},{"cwe_id":352,"name":"Cross-Site Request Forgery (CSRF)","description":"The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request."}],"exploits":[],"severity_range_score":"9.0 - 10.0","exploitability":"0.5","weighted_severity":"9.0","risk_score":4.5,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cv6j-98vx-n3ed"}