TagsApacheExploiting OGNL Injection in Apache StrutsLet’s understand how OGNL Injection works in Apache Struts. We’ll exemplify with two critical vulnerabilities in Struts: CVE-2017-5638 (Equifax breach) and CVE-2018-11776.Author(s)Ionuț PopescuPublished at14 Mar 2019Updated at05 May 2023
Exploiting OGNL Injection in Apache StrutsLet’s understand how OGNL Injection works in Apache Struts. We’ll exemplify with two critical vulnerabilities in Struts: CVE-2017-5638 (Equifax breach) and CVE-2018-11776.Author(s)Ionuț PopescuPublished at14 Mar 2019Updated at05 May 2023