CVE-2014-1972
Apache Tapestry before 5.3.6 relies on client-side object storage without checking whether a client has modified an object, which allows remote attackers to cause a denial of service (resource consumption) or execute arbitrary code via crafted serialized data.
Learn more about our Web Application Penetration Testing UK.
Learn more about our Web Application Penetration Testing UK.