Apache Struts 2.x < 126.96.36.199 RCE (S2-015)
High Nessus Plugin ID 117389
SynopsisA web application running on the remote host uses a Java framework that is affected by a remote command execution vulnerability.
DescriptionThe version of Apache Struts running on the remote host is 2.x prior to 188.8.131.52. It, therefore, is affected by a remote command execution vulnerability.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to Apache Struts version 184.108.40.206 or later