Statements (22)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
Vulnerability
|
| gptkbp:affects |
Web Applications
|
| gptkbp:category |
Web Security
Injection Vulnerability |
| gptkbp:cause |
gptkb:Privilege_Escalation
Data Leakage Remote Code Execution |
| gptkbp:exploits |
gptkb:Apache_Struts
gptkb:CVE-2017-5638 gptkb:CVE-2018-11776 |
| gptkbp:firstReported |
2011
|
| https://www.w3.org/2000/01/rdf-schema#label |
OGNL Injection
|
| gptkbp:impact |
High
|
| gptkbp:language |
gptkb:Java
|
| gptkbp:prevention |
Input Validation
Patching Vulnerable Libraries Use of Safe APIs |
| gptkbp:relatedTo |
OGNL
|
| gptkbp:requires |
User Input
|
| gptkbp:usedBy |
Attackers
|
| gptkbp:bfsParent |
gptkb:CVE-2022-26134
|
| gptkbp:bfsLayer |
7
|