2013-09-30 21:00:00
redhat
PUBLISHED
Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.