CVE-2007-4556

EPSS 2.11% · P84 Updated Feb 27, 2026

Public Exploits 1

Nuclei · 1 CVE-2007-4556.yaml [template]

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-4556

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Struts support in OpenSymphony XWork before 1.2.3, and 2.x before 2.0.4, as used in WebWork and Apache Struts, recursively evaluates all input as an Object-Graph Navigation Language (OGNL) expression when altSyntax is enabled, which allows remote attackers to cause a denial of service (infinite loop) or execute arbitrary code via form input beginning with a "%{" sequence and ending with a "}" character.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

XWork AltSyntax功能OGNL命令注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

"XWork是一个命令模式框架，用于支持Struts 2及其他应用。如果启用了altSyntax功能的话，XWork就允许向文本字符串中注入OGNL表达式并递归的处理。远程攻击者可以通过HTML文本字段提交字符串，并在其中包含OGNL表达式，如果表单验证失败的话就会执行该表达式。例如，如果以下表单要求phoneNumber字段为非空的话： <s:form action="editUser"> <s:textfield name="name" /> <s:textfield name="phoneNumb

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-4556

#	POC Description	Source Link	Shenlong Link
1	Apache Struts support in OpenSymphony XWork before 1.2.3, and 2.x before 2.0.4, as used in WebWork and Apache Struts, recursively evaluates all input as an Object-Graph Navigation Language (OGNL) expression when altSyntax is enabled, which allows remote attackers to cause a denial of service (infinite loop) or execute arbitrary code via for"m input beginning with a "%{" sequence and ending with a "}" character.	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2007/CVE-2007-4556.yaml	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-4556

请登录查看更多情报信息。

Vendor Advisories for CVE-2007-4556 (7)

http://secunia.com/advisories/26694third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/26693third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/25524vdb-entryx_refsource_BID
http://secunia.com/advisories/26681third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/37072vdb-entryx_refsource_OSVDB
http://www.vupen.com/english/advisories/2007/3042vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2007/3041vdb-entryx_refsource_VUPEN

Other References for CVE-2007-4556 (7)

http://issues.apache.org/struts/browse/WW-2030x_refsource_CONFIRM
http://struts.apache.org/2.x/docs/s2-001.htmlx_refsource_CONFIRM
http://wiki.opensymphony.com/display/WW/1.2.3+Press+Releasex_refsource_CONFIRM
http://jira.opensymphony.com/secure/ReleaseNote.jspa?projectId=10050&styleName=Html&version=21706x_refsource_CONFIRM
http://jira.opensymphony.com/browse/XW-544x_refsource_CONFIRM
http://jira.opensymphony.com/secure/ReleaseNote.jspa?projectId=10050&styleName=Html&version=21701x_refsource_CONFIRM
http://forums.opensymphony.com/ann.jspa?annID=54x_refsource_CONFIRM

https://nvd.nist.gov/vuln/detail/CVE-2007-4556

Same Patch Batch · n/a · 2007-08-28 · 23 CVEs total

CVE-2007-4560		ClamAV Popen Function 远程代码执行漏洞
CVE-2007-4580		Trustware BufferZone 缓冲区溢出漏洞
CVE-2007-4578		Sophos Antivirus UPX文件解析拒绝服务漏洞
CVE-2007-4577		Sophos Antivirus BZIP文件解析拒绝服务漏洞
CVE-2007-3846		Subversion for Windows Remote 目录遍历漏洞
CVE-2007-4566		SIDVault Simple_Bind函数多个远程栈溢出漏洞
CVE-2007-4565		Fetchmail无效警告消息本地拒绝服务漏洞
CVE-2007-4564		Hitachi Cosminexus Application Server 多个授权访问漏洞
CVE-2007-4563		Hitachi Cosminexus Application Server 多个授权访问漏洞
CVE-2007-4562		Hitachi DABroker拒绝服务漏洞
CVE-2007-4561		Real Networks Helix服务器RTSP命令远程堆溢出漏洞
CVE-2007-4549		ALPass Import Site Information 缓冲区溢出漏洞
CVE-2007-4557		Novell GroupWise WebAccess 跨站脚本攻击漏洞
CVE-2007-4521		Asterisk畸形MIME体远程拒绝服务漏洞
CVE-2006-7222		Media Player Classic FLI文件处理远程缓冲区溢出漏洞
CVE-2007-4559		Python tarfile 模块路径遍历漏洞
CVE-2007-4555		Ipswitch WS_FTP 跨站脚本攻击漏洞
CVE-2007-4554		TikiWiki tiki-remind_password.php文件跨站脚本漏洞
CVE-2007-4553		Thomson ST SIP phone拒绝服务漏洞
CVE-2007-4552		RETIRED: Arcadem Index.PHP SQL注入漏洞

Showing top 20 of 23 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-4556

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2007-4556

Public Exploits 1

I. Basic Information for CVE-2007-4556

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-4556

III. Intelligence Information for CVE-2007-4556

Vendor Advisories for CVE-2007-4556 (7)

Other References for CVE-2007-4556 (7)

Same Patch Batch · n/a · 2007-08-28 · 23 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2007-4556

Leave a comment