Re: Use Filter or ParameterInteceptors to pevent S2-032

Hi, We can avoid Dynamic method invocation in the struts.xml file by declaring below tag, Kindly follow this link for your reference http://security.coverity.com/blog/2013/Oct/making-struts2-app-more-secure-disable-dynamic-method-invocation.html Thanks, Suresh Sadanala. Regards, Suresh

Re: Use Filter or ParameterInteceptors to pevent S2-032

2016-04-28 3:59 GMT+02:00 mailinglist rs : > Besides using upgrade or disable Dynamic method invocation, can I use > Filter or ParameterInteceptors to block request parameters which start with > "method:" prefix to prevent S2-032? > Reference: https://struts.apache.org/docs/s2-032.html Yes, you ca

Use Filter or ParameterInteceptors to pevent S2-032

Besides using upgrade or disable Dynamic method invocation, can I use Filter or ParameterInteceptors to block request parameters which start with "method:" prefix to prevent S2-032? Reference: https://struts.apache.org/docs/s2-032.html