/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2012-1007

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2012-1007

CGA ID

CGA-j3p9-pmm7-8g26

Severity

Unknown

Summary

Apache Struts XSS

Description

Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 1.3.10 allow remote attackers to inject arbitrary web script or HTML via (1) the name parameter to struts-examples/upload/upload-submit.do, or the message parameter to (2) struts-cookbook/processSimple.do or (3) struts-cookbook/processDyna.do.

References

  • https://images.chainguard.dev/security/CGA-j3p9-pmm7-8g26
  • https://github.com/advisories/GHSA-9848-v244-962p
  • https://nvd.nist.gov/vuln/detail/CVE-2012-1007
  • https://exchange.xforce.ibmcloud.com/vulnerabilities/73052

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation