Headline

#
On March, 7th, 2017, Apache released a security bulletin(S2-045) addressing a security vulnerability(CVE-2017-5638) in Struts 2. In that bulletin, it states that remote code execution will be triggered to perform operations (e.g., adding user accounts, viewing, modifying or deleting files, etc) when performing file upload based on Jakarta Multipart parser.
Date Published:2017-03-09 Read More >>