Apache Struts
Apache Struts is a free, open-source, MVC framework for creating elegant, modern Java web applications. It favors convention over configuration, is extensible using a plugin architecture, and ships with plugins to support REST, AJAX and JSON.
Download
Technology Primer
Google's Patch Reward program
During SFHTML5 Google announced that they extend their program to cover the Apache Struts project as well. Now you can earn money preparing patches for us! read more
Apache Struts 2.5.20 GA
Apache Struts 2.5.20 GA has been released
on 14 January 2019.
Apache Struts 2.3.37 GA
It's the latest release of Struts 2.3.x which contains the latest security fixes,
released on 30 December 2018.
Read more in Announcement or in
Version notes
Immediately upgrade commons-fileupload to version 1.3.3
The Apache Struts Team recommends to immediately upgrade your Struts 2 based projects to use the latest released version of Commons FileUpload library, which is currently 1.3.3. Announcement
Apache Struts 2.3.x EOL
The Apache Struts Team informs about discontinuing support for Struts 2.3.x branch in 6 months, you can expect only support in case of security issues and we recommend migration to the latest version of Struts, read more in Announcement
Security Advice S2-058 released
A number of historic Struts Security Bulletins and related CVE database entries contained incorrect affected release version ranges. Read more in Announcement