OGNL Expression Injection
Variants:
Direct
Vector Type:
Attack
Relevance:
Technology Version Specific
Layer:
Application-Level
Platforms:
JSP Struts
Target Type:
Web Application
Affected Mechanisms:
Input Validation, Syntax Escaping
Invented In:
04/01/2012
Added In:
08/12/2014
Quick Introduction to the Topic:
Vector Operation Method:
Malicious inputs can affect the structure of Object Graph Navigation Library operations, known as OGNL
