VulnScope — package-centric CVE lookup- HIGH8.1CVE-2017-12615⚠ KEVEPSS 99.6%When running Apache Tomcat on Windows with HTTP PUTs enabled it was possible to upload a JSP file to the server
- HIGH8.1⚠ KEVEPSS 99.5%REST Plugin in Apache Struts uses an XStreamHandler with an instance of XStream for deserialization without any type filtering