VulnScope — package-centric CVE lookup- HIGH8.1CVE-2017-12615⚠ KEVEPSS 94.2%When running Apache Tomcat on Windows with HTTP PUTs enabled it was possible to upload a JSP file to the server
- HIGH8.1⚠ KEVEPSS 94.3%REST Plugin in Apache Struts uses an XStreamHandler with an instance of XStream for deserialization without any type filtering