History | Log In     View a printable version of the current page.  
   HOME       BROWSE PROJECT       FIND ISSUES   
    QUICK SEARCH:  
Issue Details (XML | Word | Printable)

Key: APF-941
Type: Improvement Improvement
Status: Resolved Resolved
Resolution: Fixed
Priority: Major Major
Assignee: Matt Raible
Reporter: Matt Raible
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
AppFuse

Upgrade to Struts 2.0.11

Created: 02/Nov/07 02:27 AM   Updated: 05/Nov/07 06:54 PM
Component/s: Web - Struts
Affects Version/s: 2.0 Final
Fix Version/s: 2.0.1


 Description  « Hide
http://struts.apache.org/2.0.11/docs/release-notes-2011.html

Communicate with users to make sure the following change doesn't impact them:

Struts 2.0.10 corrected a serious security flaw in the Struts 2 tags where using JSP EL expressions could allow malicious OGNL expressions through. All users are encouraged to upgrade to Struts 2.0.11. Note that existing pages that utilize JSP EL expressions with Struts 2 tags will no longer work as of this release.

 All   Comments   Change History   FishEye      Sort Order:
There are no comments yet on this issue.

Powered by a free Atlassian JIRA non-profit license for AppFuse. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.10-#260) - Bug/feature request - Contact Administrators