Another remote code execution vulnerability in Apache’s Struts2 Framework was disclosed late yesterday (August 22nd) – leaving many feeling like they’re having Deja Vu. This new vulnerability, which was identified and reported by Man Yue Mo from the Semmle Security Research Team, is quite similar to others we’ve seen, and which led to high profile and devastating exploits.
Read full news article on Dzone