The Vulnerability History Project
Vulnerabilities
Insights
Curate
Tags
All
Projects
CWEs
Languages
Lessons
Severities
Subsystems
More
News
Projects We Study
How to Contribute
By the Numbers
About Us
Toggle Theme
Warning: Our website does not support Internet Explorer, please use Edge instead.
Prevents eval expressions at all
by
Randy the Sloth 2016-01-10 11:00:10 UTC
commit 61a7ee296161bbfa61e90871649598a2e4a680a2
Struts
VCC
Forced Double OGNL Evaluation CVE-2016-4461
core/src/main/java/com/opensymphony/xwork2/ognl/OgnlUtil.java
+6
-2
core/src/main/java/com/opensymphony/xwork2/ognl/OgnlValueStack.java
+8
-4
expand_less
The Vulnerability History Project