Apache Struts 2.0.0 < 2.3.18 multiple vulnerabilities - Remote command execution and arbitrary file overwrite, Strict DMI does not work correctly(S2-008)

critical Nessus Plugin ID 279485

Version 1.2

Feb 20, 2026, 9:10 AM

  • Exploit attributes ("Exploit framework canvas" set to "True")
  • Exploit attributes ("Exploit framework core" set to "True")
  • Exploit attributes ("Exploit framework d2 elliot" set to "True")
  • Exploit attributes ("Exploit framework metasploit" set to "True")

Plugin Feed: 202602200910