Not really a question, and not quite news any more, but since it has now come to light that the recent
Equifax hack was caused by a
Struts vulnerability, I thought I'd remind anyone who drops by here that all Struts versions older than 2.3.32 or 2.5.10.1 are vulnerable. If you're using one of those older versions, head straight over to
https://cwiki.apache.org/confluence/display/WW/S2-045 to get yourself up to speed, and follow its advice.
End of public service announcement :-)