PC World

Hackers targeting servers running Apache Struts applications, researchers say

Chinese hackers are using an automated tool to exploit known vulnerabilities in Apache Struts, in order to install backdoors on servers hosting applications developed with the framework. Apache Struts ...
Bleeping Computer

Hackers are exploiting critical Apache Struts flaw using public PoC

Hackers are attempting to leverage a recently fixed critical vulnerability (CVE-2023-50164) in Apache Struts that leads to remote code execution, in attacks that rely on publicly available ...
ZDNet

Critical remote code execution flaw in Apache Struts exposes the enterprise to attack

The Apache Software Foundation has patched a critical security vulnerability which affects all versions of Apache Struts 2. Uncovered by researchers from cybersecurity firm Semmle, the security flaw ...
Threat Post

Attacks Heating Up Against Apache Struts 2 Vulnerability

Apache administrators are urged to immediately upgrade the Struts 2 web application framework to address a remote code execution flaw under public attack. Public attacks and scans looking for exposed ...