Struts2 latest remote code execution vulnerability S2-0 1 6 official patch analysis-vulnerability warning-the black bar safety net
Contrast a bit stucts svn, in fact, only modified one file ! For the action of the prefix, an increase cleanactionname function, filtering the ognl implementation, For the redirect and redirectaction prefix, the direct removal. !...