Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2006-1547

ActionForm in Apache Software Foundation (ASF) Struts before 1.2.9 with BeanUtils 1.7 allows remote attackers to cause a denial of service via a multipart/form-data encoded form with a parameter name that references the public getMultipartRequestHandler method, which provides further access to elements in the CommonsMultipartRequestHandler implementation and BeanUtils.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.141
EPSS Ranking 94.0%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
Proposed Action
ActionForm in Apache Struts versions before 1.2.9 with BeanUtils 1.7 contains a vulnerability that allows for denial-of-service (DoS).
Ransomware Campaign
Unknown
References
Products affected by CVE-2006-1547
  • Apache » Commons Beanutils » Version: 1.7.0
    cpe:2.3:a:apache:commons_beanutils:1.7.0
  • Apache » Struts » Version: N/A
    cpe:2.3:a:apache:struts:-
  • Apache » Struts » Version: 1.0
    cpe:2.3:a:apache:struts:1.0
  • Apache » Struts » Version: 1.0.1
    cpe:2.3:a:apache:struts:1.0.1
  • Apache » Struts » Version: 1.0.2
    cpe:2.3:a:apache:struts:1.0.2
  • Apache » Struts » Version: 1.1
    cpe:2.3:a:apache:struts:1.1
  • Apache » Struts » Version: 1.2.0
    cpe:2.3:a:apache:struts:1.2.0
  • Apache » Struts » Version: 1.2.1
    cpe:2.3:a:apache:struts:1.2.1
  • Apache » Struts » Version: 1.2.2
    cpe:2.3:a:apache:struts:1.2.2
  • Apache » Struts » Version: 1.2.3
    cpe:2.3:a:apache:struts:1.2.3
  • Apache » Struts » Version: 1.2.4
    cpe:2.3:a:apache:struts:1.2.4
  • Apache » Struts » Version: 1.2.5
    cpe:2.3:a:apache:struts:1.2.5
  • Apache » Struts » Version: 1.2.6
    cpe:2.3:a:apache:struts:1.2.6
  • Apache » Struts » Version: 1.2.7
    cpe:2.3:a:apache:struts:1.2.7
  • Apache » Struts » Version: 1.2.8
    cpe:2.3:a:apache:struts:1.2.8


Products
Pricing
Contact Us

Shodan ® - All rights reserved