CVE-2013-4316: Dynamic Method Invocation

September 30, 2013 (updated December 7, 2016)

This package enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.

References

struts.apache.org/docs/s2-019.html
web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4316

Detect and mitigate CVE-2013-4316 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →