Description
Apache Struts before 2.3.20 has a cross-site scripting (XSS) vulnerability.
Remediation
References
http://jvn.jp/en/jp/JVN88408929/index.html
http://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000124.html
http://www.securityfocus.com/bid/76624
https://security.netapp.com/advisory/ntap-20200330-0001/
Related Vulnerabilities
CVE-2020-28458 Vulnerability in maven package org.webjars.npm:datatables.net
CVE-2020-28052 Vulnerability in maven package org.bouncycastle:bcprov-jdk15to18
CVE-2014-7810 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-el
CVE-2017-9096 Vulnerability in maven package com.itextpdf:kernel