🚨 CRITICAL ALERT: Apache Struts2 XXE Exposed (CVE-2025-68493) ZAST.AI discovered a high severity XXE vulnerability in XWork-Core allows threat actors steal files & trigger SSRF. The flaw was hidden in DomHelper's unconfigured SAX parser. ⚡ Discovered by ZAST.ai AI Agent — proving once again that AI-driven logic beats pattern matching. Patch immediately (Struts2 <= 6.0.3)! 🔗 Vulnerability reports: cwiki.apache.org/confluence/… #ZAST #AppSec #CyberSecurity #XXE #ApacheStruts2

Another major framework, another hidden vulnerability missed by pattern matching. We just uncovered and disclosed a High-Severity XXE in Apache Struts2 (CVE-2025-68493) with our AI agent - ZAST.AI. The flaw was buried deep in DomHelper's unconfigured SAX parser. Traditional SAST tools marked it "safe" because the syntax looked fine. Our AI Agent tracked the object state and proved otherwise. Patch is out. Details 👇 cwiki.apache.org/confluence/… #ZAST #AppSec #CyberSecurity #XXE #ApacheStruts2 #CVE

🚨 CVE-2025-68493 (CVSS N/A): Apache Struts, Apache Struts: XXE vulnerability in outdated XWork component Missing XML Validation vulnerability in Apache Struts, Apache Struts. This issue affects Apache Struts: from 2.0.0 before 2.2.1; Apache Struts: from 2.2.1 through 6.1.0. Users are recommended to upgrade to version 6.1.1, which fixes the issue. Search by vul.cve Filter 👉 vul.cve="CVE-2025-68493" ZoomEye Dork 👉 app="Apache Struts2" 2.63m exposed instances. ZoomEye Link: zoomeye.ai/searchResult?q=dn… Refer: cwiki.apache.org/confluence/… #ZoomEye #NetSec #OSINT #CyberSecurity #ApacheStruts2 #WebAppSecurity #VulnerabilityResearch #InfoSec

🚨 New Writeup Alert! 🚨 "Strutted Walkthrough — HackTheBox" by MrXcrypt is now live on IW! Check it out here: infosecwriteups.com/481d056e… #apachestruts2 #ognl #strutted #cve202453677 #hacktheboxwriteup

Joyeux Noël 🎅🏻// Merry Christmas 🎄 PATCHEZ - PATCHEZ - PATCHEZ Un moment approprié pour les malfaisants de s'enprendre à ces failles en pleine périodes des fêtes. En provenance de l'article de @BleepinComputer ici-bas mentionné: "Une vulnérabilité critique d'#ApacheStruts2, récemment corrigée et répertoriée sous le nom de CVE-2024-53677, est activement #exploitée à l'aide d'exploits de démonstration de concept publics afin de trouver des dispositifs vulnérables. #ApacheStruts est un cadre de travail de source ouverte permettant de créer des applications web basées sur #Java et utilisées par diverses organisations, notamment des agences gouvernementales, des plateformes de commerce électronique, des institutions financières et des compagnies aériennes. @TheASF a révélé publiquement la faille Struts CVE-2024-53677 (score CVSS 4.0 : 9.5, « critique ») il y a six jours, indiquant qu'il s'agit d'un bogue dans la logique de téléchargement de fichiers du logiciel, permettant des traversées de chemin et le téléchargement de fichiers malveillants qui pourraient conduire à l'exécution de code à distance. Il concerne Struts 2.0.0 à 2.3.37 (fin de vie), 2.5.0 à 2.5.33, et 6.0.0 à 6.3.0.2." 20241217 - New critical Apache Struts flaw exploited to find vulnerable servers bleepingcomputer.com/news/se… 20241217 - Apache security bulletin - S2-067 - cwiki.apache.org/confluence/… 20241212 - Proof of Concept - github.com/TAM-K592/CVE-2024… 20241216 - @centrecyber_ca - Alerte - CVE-2024-53677 – #Vulnérabilité touchant #ApacheStruts2 cyber.gc.ca/fr/alertes-avis/… #infosec #cybersecurity #secinfo #cybersecurite #cyberwar #cyberwarfare #OPSEC @infosecsw #criticalinfrastructure #infrastructureessentielle #patchmanagement #gestioncorrectifs #DQP #ASAP

🚨 ¡ALERTA CRÍTICA! Detectada una grave vulnerabilidad de ejecución remota de código (RCE) en #ApacheStruts2 que pone en riesgo sistemas a nivel mundial. 🛡️ Actualiza a las versiones 2.5.33 o 6.3.0.2 para protegerte. 🔒

The #Apache Software Foundation released a security update to address #CVE-2023-50164 in #ApacheStruts2. @CISAgov encourages users and admins to review & apply updates. cisa.gov/news-events/alerts/… #Cybersecurity #InfoSec #PatchTuesday

Patch Now! PoC for Apache Struts 2 RCE (CVE-2023-50164) Flaw Released securityonline.info/patch-no… #RCE #PoC #ApacheStruts2 #Apache #Struts #Vulnerability

log4jに続き今度はApacheStruts2かぁ_(┐「ε:)_ まぁうちは利用してないし SpringFrameworkも使用してないから問題なし！

Learn #ApacheStruts2, an elegant, extensible framework for creating enterprise-ready #Javawebapplications.This framework is designed to streamline the full development cycle from building, to deploying & maintaining applications over time bit.ly/2sm9omm @tutorialspoint

Illicit Cryptocurrency mining campaigns share similar TTPs including shell scripts masquerading as JPEG files, use of variants of open-source miner, exploiting vulnerabilities in ApacheStruts2/WebLogic/Drupal, scripts & malware at Pastebin sites etc. blog.talosintelligence.com/2…

ApacheStruts2の脆弱性(CVE-2018-11776)への攻撃に関する注意喚起レポートの更新。 当該脆弱性を悪用するファイルが開発されている兆候、日本を対象に含むキャンペーンの実行可能性、クリスマス時期の攻撃の可能性、があるとの事。 zaikei.co.jp/sp/releases/713…

Listen to the Security Now podcast to hear about the CroniX #cryptomining campaign discovered by @F5Labs researchers. Tune in at 1:56 to learn more: bit.ly/2pHEYtk #ApacheStruts2 @TWiT

Just weeks ago a new #ApacheStruts2 critical remote code execution vulnerability was published, and @F5Labs researchers have already detected known threat actors exploiting it in a new #cryptomining campaign. Learn more: bit.ly/2NfjQsp #malware

Attackers are exploiting new vulnerabilities almost as quickly as they're being discovered. Learn more in a recent @F5Labs blog, “#ApacheStruts2 vulnerability (CVE-2018-11776) exploited in CroniX #cryptomining campaign”: bit.ly/2CPRlNn #malware

[#LightboardLessons] "The #ApacheStruts2 remote code execution vulnerability" with @JohnWagnon: bit.ly/2NE5FN8 #security youtube.com/watch?v=Ks46P0Ws…

“#ApacheStruts2 exploit being used by cyber criminals for #cryptomining campaigns” featuring threat intelligence from @F5Labs: bit.ly/2OehKpk via @7H3Wh173R4bb17 #malware

“Active campaign exploits critical #ApacheStruts2 flaw in the wild” ft. threat intel from @F5Labs: bit.ly/2oY06LE via @threatpost #malware

Read up on the latest #ApacheStruts2 vulnerability (CVE-2018-11776) exploited in #cryptomining campaigns, researched by @F5Labs: bit.ly/2CGWjf9 #malware #CroniX

"Cryptojacking campaign exploiting #ApacheStruts2 flaw kills off the competition" featuring threat intelligence from @F5Labs: zd.net/2QdDpiJ via @ZDNet #malware