2010/7/10 Meder Kydyraliev <mede...@gmail.com>: > There's a critical remote commands execution vulnerability in XWork(used by > Struts2), which fixed in 2.2.0, which isn't released yet but can be > downloaded here: http://people.apache.org/builds/struts/2.2.0/ > > More details about this vulnerability can be found here: > http://blog.o0o.nu/2010/07/cve-2010-1870-struts2xwork-remote.html
Thanks, I put your blog for reference in Struts 2.2.0 Notes [1] [1] https://cwiki.apache.org/confluence/display/WW/Version+Notes+2.2.0 Kind regards -- Łukasz + 48 606 323 122 http://www.lenart.org.pl/ Kapituła Javarsovia 2010 http://javarsovia.pl --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@struts.apache.org For additional commands, e-mail: user-h...@struts.apache.org