1
Candidate: CVE-2015-1831
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1831
5
https://struts.apache.org/docs/s2-024.html
7
The default exclude patterns (excludeParams) in Apache Struts 2.3.20 allow
8
remote attackers to "compromise internal state of an application" via
12
sbeattie> affects struts 2 only
18
Patches_libstruts1.2-java:
19
upstream_libstruts1.2-java: needs-triage
20
precise_libstruts1.2-java: not-affected (struts 2 only)
21
trusty_libstruts1.2-java: not-affected (struts 2 only)
22
utopic_libstruts1.2-java: not-affected (struts 2 only)
23
vivid_libstruts1.2-java: DNE
24
devel_libstruts1.2-java: DNE