2017-09-05 17:06 GMT+02:00 Emi <em...@encs.concordia.ca>: > Hello, >> >> 2017-09-05 15:17 GMT+02:00 Lukasz Lenart <lukaszlen...@apache.org>: >>> >>> - S2-052 Possible Remote Code Execution attack when using the Struts REST >>> plugin with XStream handler to handle XML payloads >>> http://struts.apache.org/docs/s2-050.html >> >> It's supposed to be http://struts.apache.org/docs/s2-052.html >> > Just want to make sure that Struts 2.3.33 does not have the issue, right?
It has, Struts 2.3.34 is under vote now. Regards -- Ćukasz + 48 606 323 122 http://www.lenart.org.pl/ --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org