← back
CVE-2008-6504

CVE-2008-6504

EPSS 39.4%
ParametersInterceptor in OpenSymphony XWork 2.0.x before 2.0.6 and 2.1.x before 2.1.2, as used in Apache Struts and other products, does not properly restrict # (pound sign) references to context objects, which allows remote attackers to execute Object-Graph Navigation Language (OGNL) statements and modify server-side context objects, as demonstrated by use of a \u0023 representation for the # character.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/32564unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://fisheye6.atlassian.com/cru/CR-9/http://issues.apache.org/struts/browse/WW-2692http://jira.opensymphony.com/browse/XW-641http://osvdb.org/49732http://secunia.com/advisories/32495http://secunia.com/advisories/32497https://exchange.xforce.ibmcloud.com/vulnerabilities/46328http://struts.apache.org/2.x/docs/s2-003.htmlhttp://www.securityfocus.com/bid/32101http://www.vupen.com/english/advisories/2008/3003http://www.vupen.com/english/advisories/2008/3004