Dark Reading

Orgs Scramble to Fix Actively Exploited Bug in Apache Struts 2

A critical, stubborn new vulnerability in Apache Struts 2 may be under active exploitation already, and fixing it isn't as simple as downloading a patch. Struts 2 is an open source framework for ...
Threat Post

Apache Struts 2 Flaw Uncovered: ‘More Critical Than Equifax Bug’

Apache has patched a critical remote code-execution vulnerability in Struts 2, and users should update immediately. A critical remote code-execution vulnerability in Apache Struts 2, the popular ...
Bleeping Computer

Critical Apache Struts RCE vulnerability wasn't fully fixed, patch now

Apache has fixed a critical vulnerability in its vastly popular Struts project that was previously believed to have been resolved but, as it turns out, wasn't fully remedied. As such, Cybersecurity ...
TheServerSide

Apache Struts 2.5 with no Struts config XML file example

Community driven content discussing all aspects of software development from DevOps to design patterns. Java web frameworks popular at the turn of the century are often slagged for their reliance on ...