Critical Flaw in Apache Struts2 Lets Hackers Take Over Web Servers


Security researchers have discovered a critical remote code execution vulnerability in the popular Apache Struts web application framework, allowing a remote attacker to run malicious code on the affected servers.

Apache Struts is a free, open-source, Model-View-Controller (MVC) framework for developing web applications in the Java programming language, which supports REST, AJAX, and JSON.


Source: TheHackersNews Critical Flaw in Apache Struts2 Lets Hackers Take Over Web Servers