oss-sec mailing list archives
Re: [ANN] Apache Struts 2.5.13 GA with Security Fixes Release
From: Lukasz Lenart <lukaszlenart () apache org>
Date: Tue, 5 Sep 2017 15:22:23 +0200
2017-09-05 15:17 GMT+02:00 Lukasz Lenart <lukaszlenart () apache org>:
- S2-052 Possible Remote Code Execution attack when using the Struts REST plugin with XStream handler to handle XML payloads http://struts.apache.org/docs/s2-050.html
It's supposed to be http://struts.apache.org/docs/s2-052.html Regards -- Ćukasz + 48 606 323 122 http://www.lenart.org.pl/
Current thread:
- [ANN] Apache Struts 2.5.13 GA with Security Fixes Release Lukasz Lenart (Sep 05)
- Re: [ANN] Apache Struts 2.5.13 GA with Security Fixes Release Lukasz Lenart (Sep 05)