Apache Struts
Apache Struts is a free, open-source, MVC framework for creating elegant, modern Java web applications. It favors convention over configuration, is extensible using a plugin architecture, and ships with plugins to support REST, AJAX and JSON.
Apache Struts 6.0.0 GA
Apache Struts 6.0.0 GA has been released
on 06 June 2022.
Security Advice on Log4j 2.12.4/2.17.1
The Apache Struts Security team would like to announce that all the users using the latest Struts 2.5.x series should either upgrade to Apache Struts 2.5.28.3 which uses Log4j 2.12.4 version which addresses the latest security vulnerabilities in Log4j or upgrade Log4j to version 2.12.4 (when running on Java 1.7) or 2.17.1 (when running on Java 8+). Read more in Announcement
Apache Struts 2.3.x EOL
The Apache Struts Team informs about discontinuing support for Struts 2.3.x branch, we recommend migration to the latest version of Struts, read more in Announcement
Apache Struts 2.3.37 GA
It's the latest release of Struts 2.3.x which contains the latest security fixes,
released on 30 December 2018.
Read more in Announcement or in
Version notes
Immediately upgrade commons-fileupload to version 1.3.3
The Apache Struts Team recommends to immediately upgrade your Struts 2 based projects to use the latest released version of Commons FileUpload library, which is currently 1.3.3. Announcement