Bleeping Computer29 天
New critical Apache Struts flaw exploited to find vulnerable servers
Apache publicly disclosed the Struts CVE-2024-53677 flaw (CVSS 4.0 score: 9.5, "critical") six days ago, stating it is a bug in the software's file upload logic, allowing path traversals and the ...
来自MSN28 天
A critical security flaw in Apache Struts is under attack, so patch now
Apache recently reported finding a “file upload logic” flaw in versions 2.0.0 to 2.3.37, 2.5.0 to 2.5.33, and 6.0.0 to 6.3.0.2. Versions 6.4.0 and 7.0.0 were deemed safe. The bug is tracked as ...