The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
Uses the same logic as in ParametersInterceptor to use st of patterns
to exclude cookies which tries to access Struts internal state
by
Randy the Sloth 2014-05-01 09:31:12 UTC
commit 1a668af7f1ffccea4a3b46d8d8c1fe1c7331ff02
Struts
Fix
Cookie-Interceptor-Manipulator CVE-2014-0116
core/src/main/java/org/apache/struts2/interceptor/CookieInterceptor.java
+16
-29
core/src/test/java/org/apache/struts2/interceptor/CookieInterceptorTest.java
-53
expand_less
The Vulnerability History Project