The Apache Struts group is pleased to announce that a new security bulletin was published - S2-025 - http://struts.apache.org/docs/s2-025.html
Thanks to Taki Uchiyama from JPCERT/CC who reported two potential XSS vulnerabilities available in older versions of The Apache Struts 2. Please read the mentioned security bulletin for more details and also reading our Security guideline ( http://struts.apache.org/docs/security.html ) will help you secure your application. - The Apache Struts group. -- Ćukasz + 48 606 323 122 http://www.lenart.org.pl/
