afae14eb86d24d3b6f8dd1d1a23da2b355c5a0d7 | Vulnerability History Project

The Vulnerability History Project

WW-4162 Doesn't check for disallowed ognl expressions if getting from expression cache

      git-svn-id: https://svn.apache.org/repos/asf/struts/struts2/trunk@1533360 13f79535-47bb-0310-9956-ffa450edef68

by Randy the Sloth 2013-10-18 08:39:11 UTC

commit afae14eb86d24d3b6f8dd1d1a23da2b355c5a0d7

Struts VCC CVE-2016-4438

xwork-core/src/main/java/com/opensymphony/xwork2/ognl/OgnlUtil.java

+3 -7

expand_less