Apache Struts is an open source framework for developing enterprise-ready Java web applications. There has been found a vulnerability (CVE-2016-4438) in its REST plugin. The vulnerability may allow an attacker to execute arbitrary code on server side when using the REST plugin.
Users of Struts versions 2.3.20 to 2.3.28.1 are recommended to update to Struts 2.3.29 version.
More information here.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment