{"description":"\u898b\u51fa\u3057\u306f\u306a\u308b\u3079\u304f\u65e5\u672c\u8a9e\u306b\u3002 [\u7d9a\u5831] Apache Struts\u8106\u5f31\u6027 Vulnerability Note VU#719225 - Apache Struts2 ClassLoader allows access to class properties via request parameters Apache Struts2\u306e\u8106\u5f31\u6027 \u201c\u5b8c\u5168\u4fee\u6b63\u7248\u201d\u306f\u8fd1\u65e5\u30ea\u30ea\u30fc\u30b9 - ITmedia \u30a8\u30f3\u30bf\u30fc\u30d7\u30e9\u30a4\u30ba \u30cb\u30e5\u30fc\u30b9 - \u300cStruts\u306e\u8106\u5f31\u6027\u3092\u7a81\u304f\u653b\u6483\u3092\u691c\u77e5\u3001\u65e9\u6025\u306a\u5bfe\u7b56\u3092\u300d\u3001\u30e9\u30c3\u30af\u897f\u672c\u5c02\u52d9\uff1aITpro S2-020\u985e\u4f3c\u653b\u6483\u306eStruts1\u3067\u306e\u5bfe\u7b56\u65b9\u6cd5 - Qiita Struts\u306eClassLo\u2026","published":"2014-04-28 18:33:52","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fsecurity.nekotricolor.com%2Fentry%2F2014%2F04%2F27%2F20140426-27-security-topics\" title=\"20140426-27 \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u60c5\u5831\u307e\u3068\u3081 - \u30c8\u30ea\u30b3\u30ed\u30fc\u30eb\u306a\u732b/\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","provider_name":"Hatena Blog","author_name":"nekotricolor","type":"rich","version":"1.0","image_url":null,"provider_url":"https://hatena.blog","blog_url":"https://security.nekotricolor.com/","height":"190","width":"100%","blog_title":"\u30c8\u30ea\u30b3\u30ed\u30fc\u30eb\u306a\u732b/\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3","categories":["\u672c\u65e5\u306e\u307e\u3068\u3081"],"author_url":"https://blog.hatena.ne.jp/nekotricolor/","url":"https://security.nekotricolor.com/entry/2014/04/27/20140426-27-security-topics","title":"20140426-27 \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u60c5\u5831\u307e\u3068\u3081"}