SecuritySpace - CVE-2016-3087

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2016-3087

Description: Apache Struts 2.3.19 to 2.3.20.2, 2.3.21 to 2.3.24.1, and 2.3.25 to 2.3.28, when Dynamic Method Invocation is enabled, allow remote attackers to execute arbitrary code via vectors related to an ! (exclamation mark) operator to the REST Plugin.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2016-3087
BugTraq ID: 90960
http://www.securityfocus.com/bid/90960
https://www.exploit-db.com/exploits/39919/
http://www.securitytracker.com/id/1036017

CVE ID:	CVE-2016-3087
Description:	Apache Struts 2.3.19 to 2.3.20.2, 2.3.21 to 2.3.24.1, and 2.3.25 to 2.3.28, when Dynamic Method Invocation is enabled, allow remote attackers to execute arbitrary code via vectors related to an ! (exclamation mark) operator to the REST Plugin.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2016-3087 BugTraq ID: 90960 http://www.securityfocus.com/bid/90960 https://www.exploit-db.com/exploits/39919/ http://www.securitytracker.com/id/1036017