CVE-2012-0394

NUCLEI

Apache Struts <2.3.1.1 - RCE

Title source: llm

Description

The DebuggingInterceptor component in Apache Struts before 2.3.1.1, when developer mode is used, allows remote attackers to execute arbitrary commands via unspecified vectors. NOTE: the vendor characterizes this behavior as not "a security vulnerability itself.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotejava

https://www.exploit-db.com/exploits/31434

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by SEC Consult · textwebappsmultiple

https://www.exploit-db.com/exploits/18329

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Johannes Dahse, Andreas Nusser, Alvaro, s PoC, avoided surname because of the spanish char, sorry about that :\ · rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/struts_dev_mode.rb

View Code ZIP pw:eip

Nuclei Templates (1)

Apache Struts <2.3.1.1 - Remote Code Execution

MEDIUMVERIFIEDby tess

Shodan:

html:"Struts Problem Report" || http.title:"struts2 showcase" || http.html:"struts problem report" || http.html:"apache struts"

FOFA: body="struts problem report" || title="struts2 showcase" || body="apache struts"

References (7)

[Broken Link] http://archives.neohapsis.com/archives/bugtraq/2012-01/0031.html

[Vendor Advisory] http://struts.apache.org/2.x/docs/s2-008.html

[Release Notes, Vendor Advisory] http://struts.apache.org/2.x/docs/version-notes-2311.html

[Exploit, Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/18329

[Exploit, Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/31434

[Broken Link] http://www.osvdb.org/78276

[Broken Link] https://www.sec-consult.com/files/20120104-0_Apache_Struts2_Multiple_Critical_Vulnerabilities.txt

Scores

EPSS 0.9257

EPSS Percentile 99.7%

Details

CWE

CWE-94

Status published

Products (2)

apache/struts 2.0.0 - 2.3.17

org.apache.struts.xwork/xwork-core 0 - 2.3.18Maven

Published Jan 08, 2012

Tracked Since Feb 18, 2026