Hello to anybody and an happy new year!

Our dependency check startet to fail last year already marking struts2-tiles-plugin as the source of a security issue. As the plugin uses Apache Tiles 3.0.8 underneath it is affected by CVE-2023-49735. Now as we use the struts-tiles-plugin to build our web pages and the Tiles project is already retired, can somebody of the team explain how to mitigate the security issue (besides moving away from Tiles completely)?

Kind regards

Sebastian





---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscr...@struts.apache.org
For additional commands, e-mail: user-h...@struts.apache.org

Reply via email to