Description

Apache Roller is a full-featured, multi-user and group-blog server suitable for blog sites large and small. It runs as a Java web application that should be able to run on most any Java EE server and relational database.

Roller version 5 earlier than 5.0.2 and all of version 4 are vulnerable to a pre-authenticated OGNL injection that can result in remote code execution (RCE).

Remediation

Upgrade to the latest version of Apache Roller (the problem was fixed in version 5.0.2).

References

Remote Code Execution in Apache Roller via OGNL Injection

Related Vulnerabilities

The DROWN attack (SSLv2 supported)

WebLogic admin console weak credentials

GraphQL Array-based Query Batching Allowed: Potential Batching Attack Vulnerability

WordPress Plugin Dean's FCKEditor with pwwang's code Arbitrary File Upload (1.0.0)

Ruby Improper Input Validation Vulnerability (CVE-2015-1855)

Severity

High

Classification

CVE-2013-4212 CWE-20 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Configuration