CVE-2019-0230

CRITICAL NUCLEI LAB

Apache Struts < 2.5.20 - Prototype Pollution

Title source: rule

Description

Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag attributes, may lead to remote code execution.

Exploits (7)

exploitdb WORKING POC

by West Shepherd · pythonremotemultiple

https://www.exploit-db.com/exploits/49068

View Code ZIP pw:eip

nomisec STUB 36 stars

by ramoncjs3 · poc

https://github.com/ramoncjs3/CVE-2019-0230

View Code ZIP pw:eip

nomisec WORKING POC 15 stars

by PrinceFPF · poc

https://github.com/PrinceFPF/CVE-2019-0230

View Code ZIP pw:eip

nomisec WORKING POC 9 stars

by Al1ex · poc

https://github.com/Al1ex/CVE-2019-0230

View Code ZIP pw:eip

nomisec WORKING POC 1 stars

by f8al · poc

https://github.com/f8al/CVE-2019-0230-PoC

View Code ZIP pw:eip

nomisec WORKING POC

by tw-eason-tseng · poc

https://github.com/tw-eason-tseng/CVE-2019-0230_Struts2S2-059

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Spencer McIntyre, Matthias Kaiser, Alvaro Muñoz, ka1n4t · rubypocunix

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/struts2_multi_eval_ognl.rb

View Code ZIP pw:eip

Nuclei Templates (1)

Apache Struts <=2.5.20 - Remote Code Execution

CRITICALby geeknik

Shodan: http.html:"apache struts" || http.title:"struts2 showcase" || http.html:"struts problem report"

FOFA: body="struts problem report" || title="struts2 showcase" || body="apache struts"

References (9)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/160108/Apache-Struts-2.5.20-Double-OGNL-Evaluation.html

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/160721/Apache-Struts-2-Forced-Multi-OGNL-Evaluation.html

[Vendor Advisory] https://cwiki.apache.org/confluence/display/ww/s2-059

[Permissions Required] https://launchpad.support.sap.com/#/notes/2982840

[Patch, Third Party Advisory] https://www.oracle.com/security-alerts/cpuApr2021.html

[Patch, Third Party Advisory] https://www.oracle.com/security-alerts/cpujan2021.html

[Patch, Third Party Advisory] https://www.oracle.com/security-alerts/cpuoct2021.html

[Mailing List] https://lists.apache.org/thread.html/r1125f3044a0946d1e7e6f125a6170b58d413ebd4a95157e4608041c7%40%3Cannounce.apache.org%3E

[Mailing List] https://lists.apache.org/thread.html/r90890afea72a9571d666820b2fe5942a0a5f86be406fa31da3dd0922%40%3Cannounce.apache.org%3E

Scores

CVSS v3 9.8

EPSS 0.9385

EPSS Percentile 99.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY

Community Lab

docker pull vulhub/struts2:2.5.16

https://github.com/PrinceFPF/CVE-2019-0230

https://github.com/ramoncjs3/CVE-2019-0230

https://github.com/f8al/CVE-2019-0230-PoC

+2 more repos

View in Library

Details

CWE

CWE-1321

Status published

Products (7)

apache/struts 2.0.0 - 2.5.20

oracle/communications_policy_management 12.5.0

oracle/financial_services_data_integration_hub 8.0.3

oracle/financial_services_data_integration_hub 8.0.6

oracle/financial_services_market_risk_measurement_and_management 8.0.6

oracle/mysql_enterprise_monitor < 8.0.23

org.apache.struts/struts2-core 2.0.0 - 2.5.22Maven

Published Sep 14, 2020

Tracked Since Feb 18, 2026