CVE-2005-3745
published 2005-11-22CVE-2005-3745: Cross-site scripting (XSS) vulnerability in Apache Struts 1.2.7, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via…
PriorityP425medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
25.71%
97.7th percentile
Cross-site scripting (XSS) vulnerability in Apache Struts 1.2.7, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly quoted or filtered when the request handler generates an error message.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | struts | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →XSS payload is injected via the query string in a .do request path, triggering an error response from the Struts request handler — monitor HTTP requests to Struts endpoints (.do) containing script injection patterns in the URI/query string ↗
- →The exploit PoC embeds JavaScript directly in the URL path segment (not query parameter) of a .do Struts action — inspect the full request URI, not just the query string, for script tags or JavaScript function calls ↗
- →Exploitation may be used to steal cookie-based authentication credentials — correlate XSS attempts against Struts .do endpoints with subsequent suspicious cookie exfiltration activity ↗
- ·Vulnerability does NOT affect Struts running on Tomcat (Red Hat's supported configuration); only unsupported deployment modes are vulnerable ↗
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Apache Struts Cross-site scripting Vulnerability
osv·2022-05-01
CVE-2005-3745 [MEDIUM] Apache Struts Cross-site scripting Vulnerability
Apache Struts Cross-site scripting Vulnerability
Cross-site scripting (XSS) vulnerability in Apache Struts 1.2.7, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly quoted or filtered when the request handler generates an error message.
GHSA
Apache Struts Cross-site scripting Vulnerability
ghsa·2022-05-01
CVE-2005-3745 [MEDIUM] CWE-80 Apache Struts Cross-site scripting Vulnerability
Apache Struts Cross-site scripting Vulnerability
Cross-site scripting (XSS) vulnerability in Apache Struts 1.2.7, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly quoted or filtered when the request handler generates an error message.
Red Hat
security flaw
vendor_redhat·2005-11-21·CVSS 4.3
CVE-2005-3745 [MEDIUM] security flaw
security flaw
Cross-site scripting (XSS) vulnerability in Apache Struts 1.2.7, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly quoted or filtered when the request handler generates an error message.
No detection rules found.
Bugzilla
CVE-2005-3745 security flaw
bugzilla·2018-08-16·CVSS 4.3
CVE-2005-3745 [MEDIUM] CVE-2005-3745 security flaw
CVE-2005-3745 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Cross-site scripting (XSS) vulnerability in Apache Struts 1.2.7, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the query string, which is not properly quoted or filtered when the request handler generates an error message.
Bugzilla
CVE-2005-3745 struts cross site scripting flaw
bugzilla·2005-11-22·CVSS 4.3
CVE-2005-3745 [MEDIUM] CVE-2005-3745 struts cross site scripting flaw
CVE-2005-3745 struts cross site scripting flaw
Struts has a cross site scripting vulnerability in the way it displays error
pages. This issue should not affect struts running on tomcat, which is our
supported usage of struts. It is possible there are customers using this
package in an unsupported manner which will be vulnerable to this issue.
Please see the URL field for more information.
Discussion:
This issue should affect both RHAPS and RHAPS2.
---
Moving to impact low instead of moderate (justification: "This issue should not
affect struts running on tomcat, which is our supported usage of struts. ")
---
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
Bugzilla
CVE-2005-3745 struts cross site scripting flaw
bugzilla·2005-11-22·CVSS 4.3
CVE-2005-3745 [MEDIUM] CVE-2005-3745 struts cross site scripting flaw
CVE-2005-3745 struts cross site scripting flaw
+++ This bug was initially created as a clone of Bug #173929 +++
Struts has a cross site scripting vulnerability in the way it displays error
pages. This issue should not affect struts running on tomcat, which is our
supported usage of struts. It is possible there are customers using this
package in an unsupported manner which will be vulnerable to this issue.
Please see the URL field for more information.
http://secunia.com/advisories/17677http://secunia.com/advisories/18341http://securityreason.com/securityalert/197http://securitytracker.com/id?1015257http://www.hacktics.com/AdvStrutsNov05.htmlhttp://www.osvdb.org/21021http://www.redhat.com/support/errata/RHSA-2006-0157.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0161.htmlhttp://www.securityfocus.com/archive/1/417296/30/0/threadedhttp://www.securityfocus.com/bid/15512http://www.vupen.com/english/advisories/2005/2525https://lists.apache.org/thread.html/r02c2d634fa74209d941c90f9a4cd36a6f12366ca65f9b90446ff2de3%40%3Cissues.struts.apache.org%3Ehttps://lists.apache.org/thread.html/rf482c101a88445d73cc2e89dbf7f16ae00a4aa79a544a1e72b2326db%40%3Cissues.struts.apache.org%3Ehttp://secunia.com/advisories/17677http://secunia.com/advisories/18341http://securityreason.com/securityalert/197http://securitytracker.com/id?1015257http://www.hacktics.com/AdvStrutsNov05.htmlhttp://www.osvdb.org/21021http://www.redhat.com/support/errata/RHSA-2006-0157.htmlhttp://www.redhat.com/support/errata/RHSA-2006-0161.htmlhttp://www.securityfocus.com/archive/1/417296/30/0/threadedhttp://www.securityfocus.com/bid/15512http://www.vupen.com/english/advisories/2005/2525https://lists.apache.org/thread.html/r02c2d634fa74209d941c90f9a4cd36a6f12366ca65f9b90446ff2de3%40%3Cissues.struts.apache.org%3Ehttps://lists.apache.org/thread.html/rf482c101a88445d73cc2e89dbf7f16ae00a4aa79a544a1e72b2326db%40%3Cissues.struts.apache.org%3E
2005-11-22
Published