śr., 14 lis 2018 o 19:34 Deborah White <deborah.wh...@doj.ca.gov> napisał(a): > > Hello, we have some very old internal apps that are still using Struts 1. > Does this alert apply to Struts 1 or only Struts 2? It says 2.3.36 or prior > so I'm not sure. > > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1000031
Struts 1 reached EOL in 2013, we do not publish any announcements that target that version, neither support it in any case. Regards -- Łukasz + 48 606 323 122 http://www.lenart.org.pl/ --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org