Search for packages
| purl | pkg:maven/org.apache.struts/struts2-convention-plugin@6.3.0.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-gfxq-vtry-bqgg | Files or Directories Accessible to External Parties An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. Users are recommended to upgrade to versions Struts 2.5.33 or Struts 6.3.0.2 or greater to fix this issue. |
CVE-2023-50164
GHSA-2j39-qcjm-428w |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-16T22:45:04.378742+00:00 | GitLab Importer | Fixing | VCID-gfxq-vtry-bqgg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-convention-plugin/CVE-2023-50164.yml | 38.4.0 |
| 2026-04-12T00:04:42.832008+00:00 | GitLab Importer | Fixing | VCID-gfxq-vtry-bqgg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-convention-plugin/CVE-2023-50164.yml | 38.3.0 |
| 2026-04-03T00:09:22.647759+00:00 | GitLab Importer | Fixing | VCID-gfxq-vtry-bqgg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-convention-plugin/CVE-2023-50164.yml | 38.1.0 |
| 2026-04-01T12:52:13.675195+00:00 | GitLab Importer | Fixing | VCID-gfxq-vtry-bqgg | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.struts/struts2-convention-plugin/CVE-2023-50164.yml | 38.0.0 |