Security News > 2017 > September > Critical Flaw in Apache Struts2 Lets Hackers Take Over Web Servers (The Hackers News)
2017-09-05 11:40
Security researchers have discovered a critical remote code execution vulnerability in the popular Apache Struts web application framework, allowing a remote attacker to run malicious code on the affected servers. Apache Struts is a free, open-source, Model-View-Controller (MVC) framework for developing web applications in the Java programming language, which supports REST, AJAX, and JSON.
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/avE1jcuW1IY/apache-struts-vulnerability.html
Related news
- New critical Apache Struts flaw exploited to find vulnerable servers (source)
- Apache fixes remote code execution bypass in Tomcat web server (source)
- Critical RCE bug in VMware vCenter Server now exploited in attacks (source)
- Hackers exploit critical bug in Array Networks SSL VPN products (source)
- Critical Flaw in ProjectSend Under Active Exploitation Against Public-Facing Servers (source)
- Hackers exploit ProjectSend flaw to backdoor exposed servers (source)
- What It Costs to Hire a Hacker on the Dark Web (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
- Russian hackers hijack Pakistani hackers' servers for their own attacks (source)
- Russia-Linked Turla Exploits Pakistani Hackers' Servers to Target Afghan and Indian Entities (source)