mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-20 12:14:44 +02:00
0xMarcio
756 B
756 B
CVE-2013-6348
Description
Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 2.3.15.3 allow remote attackers to inject arbitrary web script or HTML via the namespace parameter to (1) actionNames.action and (2) showConfig.action in config-browser/.
POC
Reference
Github
No PoCs found on GitHub currently.