InfoWorld

Adopting Struts 2.0

While the Struts framework has been widely deployed, there’s no doubt that its original version held room for improvement. The newly released Struts 2.0 carries much of the power of its predecessor ...
ZDNet

Critical remote code execution flaw in Apache Struts exposes the enterprise to attack

The Apache Software Foundation has patched a critical security vulnerability which affects all versions of Apache Struts 2. Uncovered by researchers from cybersecurity firm Semmle, the security flaw ...
Dark Reading

Patch Now: Exploit Activity Mounts for Dangerous Apache Struts 2 Bug

Concerns are high over a critical, recently disclosed remote code execution (RCE) vulnerability in Apache Struts 2 that attackers have been actively exploiting over the past few days. Apache Struts is ...
PC World

Hackers targeting servers running Apache Struts applications, researchers say

Chinese hackers are using an automated tool to exploit known vulnerabilities in Apache Struts, in order to install backdoors on servers hosting applications developed with the framework. Apache Struts ...
Hosted on MSN

Apache issues patches for critical Struts 2 RCE bug

We now know the remote code execution vulnerability in Apache Struts 2 disclosed back in November carries a near-maximum severity rating following the publication of the CVE.… According to the ...
Threat Post

Attacks Heating Up Against Apache Struts 2 Vulnerability

Apache administrators are urged to immediately upgrade the Struts 2 web application framework to address a remote code execution flaw under public attack. Public attacks and scans looking for exposed ...