Ars Technica

In-the-wild exploits ramp up against high-impact sites using Apache Struts

Eight days after developers patched a critical flaw in the Apache Struts Web application framework, there has been no let-up in the volley of attacks attempting to exploit the vulnerability, which ...
Threat Post

PoC Code Surfaces to Exploit Apache Struts 2 Vulnerability

Researchers find proof-of-concept code that can take advantage of the recently identified Apache Struts framework (CVE-2018-11776) vulnerability. Proof-of-concept code found on the GitHub repository ...