Bleeping Computer

New Apache Struts Vulnerability Puts Many Fortune Companies at Risk

An estimated 65% of Fortune 100 companies could be vulnerable to a security bug discovered in Apache Struts, a popular Java MVC framework used in the development of many top-grade enterprise ...
Threat Post

Apache Warns of Faulty Zero Day Patch for Struts

UPDATE – The Apache Software Foundation will re-issue at patch for a ClassLoader manipulation zero-day vulnerability in Struts. The fix is expected to be ready within 72 hours; a workaround is ...
Yahoo

A critical security flaw in Apache Struts is under attack, so patch now

A critical vulnerability in the Apache Struts 2 application framework is now under active exploitation, security researchers have warned, urging users to apply the patch or run the latest version as ...
Computing

PoC exploit to target two Apache Struts 2 flaws emerges on GitHub

Proof-of-Concept (PoC) code of an exploit to trigger two security vulnerabilities in the Apache Struts 2 web application framework is publicly available on internet. Last week, Apache published a ...
Bleeping Computer

Apache Struts Team Urges Users for Library Update to Plug Years-Old Bugs

In an advisory yesterday, the Apache Software Foundation reiterates its recommendation for users of Struts to make sure their installations run a version of the Commons FileUpload library newer than 1 ...