Security News > 2017 > September > Critical Flaw in Apache Struts2 Lets Hackers Take Over Web Servers (The Hackers News)
2017-09-05 11:40
Security researchers have discovered a critical remote code execution vulnerability in the popular Apache Struts web application framework, allowing a remote attacker to run malicious code on the affected servers. Apache Struts is a free, open-source, Model-View-Controller (MVC) framework for developing web applications in the Java programming language, which supports REST, AJAX, and JSON.
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/avE1jcuW1IY/apache-struts-vulnerability.html
Related news
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
- Apache Parquet exploit tool detect servers vulnerable to critical flaw (source)
- Critical Flaw in Apache Parquet Allows Remote Attackers to Execute Arbitrary Code (source)
- Critical FortiSwitch flaw lets hackers change admin passwords remotely (source)
- Critical flaws fixed in Nagios Log Server (source)
- Critical Apache Roller Vulnerability (CVSS 10.0) Enables Unauthorized Session Persistence (source)
- ASUS releases fix for AMI bug that lets hackers brick servers (source)
- New Critical SAP NetWeaver Flaw Exploited to Drop Web Shell, Brute Ratel Framework (source)
- Critical Langflow RCE flaw exploited to hack AI app servers (source)
- CISA warns of hackers targeting critical oil infrastructure (source)