GHSA-rpj9-r897-wc6q

Source

https://github.com/advisories/GHSA-rpj9-r897-wc6q

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-rpj9-r897-wc6q/GHSA-rpj9-r897-wc6q.json

JSON Data

https://api.test.osv.dev/v1/vulns/GHSA-rpj9-r897-wc6q

Aliases

CVE-2013-2248

Published

2022-05-17T03:13:10Z

Modified

2024-12-06T05:39:38.513805Z

Summary

Open redirect in Apache Struts

Details

The Struts 2 DefaultActionMapper used to support a method for short-circuit navigation state changes by prefixing parameters with "redirect:" or "redirectAction:", followed by a desired redirect target expression. This mechanism was intended to help with attaching navigational information to buttons within forms. Attackers could use this to redirect to arbitrary web sites and conduct phishing attacks.

In Struts 2 before 2.3.15.1 the information following "redirect:" or "redirectAction:" can easily be manipulated to redirect to an arbitrary location.

Database specific

{
    "github_reviewed": true,
    "nvd_published_at": "2013-07-20T03:37:00Z",
    "severity": "MODERATE",
    "cwe_ids": [
        "CWE-20"
    ],
    "github_reviewed_at": "2022-11-03T22:42:18Z"
}

References

Affected packages

Maven / org.apache.struts:struts2-core

Package

Name: org.apache.struts:struts2-core; View open source insights on deps.dev
Purl: pkg:maven/org.apache.struts/struts2-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.3.15.1

Affected versions

2.*

2.0.5

2.0.6

2.0.8

2.0.9

2.0.11

2.0.11.1

2.0.11.2

2.0.12

2.0.14

2.1.2

2.1.6

2.1.8

2.1.8.1

2.2.1

2.2.1.1

2.2.3

2.2.3.1

2.3.1

2.3.1.1

2.3.1.2

2.3.3

2.3.4

2.3.4.1

2.3.7

2.3.8

2.3.12

2.3.14

2.3.14.1

2.3.14.2

2.3.14.3

2.3.15