Apache Struts 6.1.1 GA
Apache Struts 6.1.1 GA has been released
on 28 November 2022.
Security Advice on Log4j 2.12.4/2.17.1
The Apache Struts Security team would like to announce that all the users using the latest Struts 2.5.x series should either upgrade to Apache Struts 22.214.171.124 which uses Log4j 2.12.4 version which addresses the latest security vulnerabilities in Log4j or upgrade Log4j to version 2.12.4 (when running on Java 1.7) or 2.17.1 (when running on Java 8+). Read more in Announcement
Apache Struts 2.3.x EOL
The Apache Struts Team informs about discontinuing support for Struts 2.3.x branch, we recommend migration to the latest version of Struts, read more in Announcement