Description
Multiple cross-site scripting (XSS) vulnerabilities in component handlers in the javatemplates (aka Java Templates) plugin in Apache Struts 2.x before 2.2.3 allow remote attackers to inject arbitrary web script or HTML via an arbitrary parameter value to a .action URI, related to improper handling of value attributes in (1) FileHandler.java, (2) HiddenHandler.java, (3) PasswordHandler.java, (4) RadioHandler.java, (5) ResetHandler.java, (6) SelectHandler.java, (7) SubmitHandler.java, and (8) TextFieldHandler.java.
Remediation
References
http://www.vupen.com/english/advisories/2011/1198
https://issues.apache.org/jira/browse/WW-3608
https://issues.apache.org/jira/browse/WW-3597
http://struts.apache.org/2.2.3/docs/version-notes-223.html
Related Vulnerabilities
CVE-2022-28157 Vulnerability in maven package com.surenpi.jenkins:phoenix-autotest
CVE-2018-10899 Vulnerability in maven package org.jolokia:jolokia-core
CVE-2018-1309 Vulnerability in maven package org.apache.nifi:nifi-standard-processors
CVE-2023-40312 Vulnerability in maven package org.opennms:opennms-webapp
CVE-2018-1999047 Vulnerability in maven package org.jenkins-ci.main:jenkins-core