Description
Multiple cross-site scripting (XSS) vulnerabilities in component handlers in the javatemplates (aka Java Templates) plugin in Apache Struts 2.x before 2.2.3 allow remote attackers to inject arbitrary web script or HTML via an arbitrary parameter value to a .action URI, related to improper handling of value attributes in (1) FileHandler.java, (2) HiddenHandler.java, (3) PasswordHandler.java, (4) RadioHandler.java, (5) ResetHandler.java, (6) SelectHandler.java, (7) SubmitHandler.java, and (8) TextFieldHandler.java.
Remediation
References
http://www.vupen.com/english/advisories/2011/1198
https://issues.apache.org/jira/browse/WW-3608
https://issues.apache.org/jira/browse/WW-3597
http://struts.apache.org/2.2.3/docs/version-notes-223.html
Related Vulnerabilities
CVE-2020-13951 Vulnerability in maven package org.apache.openmeetings:openmeetings-server
CVE-2022-41231 Vulnerability in maven package org.jenkins-ci.plugins:build-publisher
CVE-2022-34206 Vulnerability in maven package org.jenkins-ci.plugins:jianliao
CVE-2020-2269 Vulnerability in maven package org.jenkins-ci.plugins:chosen-views-tabbar
CVE-2018-17187 Vulnerability in maven package org.apache.qpid:proton-j