You are viewing a plain text version of this content. The canonical link for it is here.

Posted to announcements@struts.apache.org by Lukasz Lenart <lu...@apache.org> on 2015/08/26 15:12:06 UTC

[ANN] New Security Bulletin

The Apache Struts group is pleased to announce that a new security
bulletin was published
- S2-025 - http://struts.apache.org/docs/s2-025.html

Thanks to Taki Uchiyama from JPCERT/CC who reported two potential XSS
vulnerabilities available in older versions of The Apache Struts 2.
Please read the mentioned security bulletin for more details and also
reading our Security guideline (
http://struts.apache.org/docs/security.html ) will help you secure
your application.


- The Apache Struts group.

-- 
Łukasz
+ 48 606 323 122 http://www.lenart.org.pl/