Hi, I'm brand new to Struts. Now we have a big project that was developed in struts1 with spring, hibernate was written in 2003. The developers who worked on the project are currently unavailable for reference. version:
"[SID: 29972] Attack: Apache Struts CVE-2017-5638 attack is blocked. Traffic is blocked for this application: C: \ PROGRAM FILES \ APACHE SOFTWARE FUND \ TOMCAT 9.0 \ BIN \ TOMCAT9.EXE"
We searched on google and found that the problem could be caused due to java vulnerability in struts. Many blogs have proposed updating racks for struts2 to solve this problem.
Now we plan to switch to struts2. We need to know about the main problems (Configuration, Dependency, packages, etc.) that will arise during migration.
Thanks in advance.
source
share