CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-49735 – Apache Tiles: Unvalidated input may lead to path traversal and XXE
https://notcve.org/view.php?id=CVE-2023-49735
30 Nov 2023 — The value set as the DefaultLocaleResolver.LOCALE_KEY attribute on the session was not validated while resolving XML definition files, leading to possible path traversal and eventually SSRF/XXE when passing user-controlled data to this key. Passing user-controlled data to this key may be relatively common, as it was also used like that to set the language in the 'tiles-test' application shipped with Tiles. This issue affects Apache Tiles from version 2 onwards. NOTE: This vulnerability only affects products... • https://lists.apache.org/thread/8ktm4vxr6vvc1qsxh6ft8jzmom1zl65p • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 6.8EPSS: 2%CPEs: 3EXPL: 0CVE-2009-1275
https://notcve.org/view.php?id=CVE-2009-1275
09 Apr 2009 — Apache Tiles 2.1 before 2.1.2, as used in Apache Struts and other products, evaluates Expression Language (EL) expressions twice in certain circumstances, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive information via unspecified vectors, related to the (1) tiles:putAttribute and (2) tiles:insertTemplate JSP tags. Apache Tiles v2.1 anteriores a v2.1.2, como las usadas en Apache Struts y otros productos, evalúan las expresiones del lenguaje de expresiones (EL)... • http://svn.apache.org/viewvc/tiles/framework/trunk/src/site/apt/security/security-bulletin-1.apt?revision=741913 •