Mohammed T Ansari

Dec 21, 2023 | securityboulevard.com | Mohammed T Ansari

By Mohammed Ansari The latest vulnerability CVE-2023-50164 disclosed on Apache Struts affects the Struts 2 framework's file upload logic, allowing unauthorized path traversal. The post Apache Struts 2 Vulnerability CVE-2023-50164 Exposed appeared first on Indusface ... Read More

Dec 21, 2023 | securityboulevard.com | Mohammed T Ansari

On December 7th, 2023, the Apache Struts project disclosed a significant vulnerability, CVE-2023-50164, in its Struts 2 open-source web framework. Rated at a critical CVSS score of 9.8, this flaw resides within the framework's file upload logic. Exploiting this vulnerability empowers attackers to manipulate upload parameters, potentially leading to arbitrary file upload and, under specific conditions, code execution.

Sep 20, 2023 | jclinepi.com | M. Hassan Murad |Mohammed T Ansari |David Rind |Gordon Guyatt

These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.