Apache Struts2 high-risk vulnerabilities to attack, please webmaster timely attention

Intermediary transaction SEO diagnosis Taobao guest Cloud host technology Hall

The domestic well-known security loophole platform cloud website shows, from yesterday, received a large number of well-known sites in China because of the use of struts application framework of the loopholes, involving the Web site including Bowser network, Baidu, China Unicom, Yeepay Payment, Tudou, Jingdong Mall, Shop No. 1th, Lily Nets, NetEase, Sohu, Taobao and so on. Baidu Webmaster Platform also issued a security risk notice:

Dear Webmaster Friends,

Hello everyone, yesterday the internet suffered a loophole--apache Struts2 high-risk vulnerabilities, affecting all versions of Struts 2.0.0-struts 2.3.15. A large number of websites, including many well-known domestic websites, are affected by this vulnerability to varying degrees. Attackers can use this vulnerability to execute malicious Java code, resulting in the Web site data stolen, Web page tampering and other serious consequences, so that the site and netizens security is greatly threatened.

In order to avoid the loss of webmaster, Baidu Webmaster Platform is issued a security risk notice, please webmasters to check whether the site uses STRUTS2 framework, such as the use of your timely diagnosis of their own web site is this loophole. To this end, the Security alliance partner SCANV Security Center has urgently developed an online gadget that can help you quickly diagnose the existence of this vulnerability, details click: http://www.scanv.com/tools/.

If your site has this vulnerability, please fix it urgently and upgrade to the official latest version of Struts 2.3.15.1, download address: http://struts.apache.org/download.cgi#struts23151

This article originates from Zhang Blog: http://www.semzhangxin.cn Zhang Blog: Focus on Network marketing and SEO, network marketing, network promotion, website optimization, website operation planning, SEO, SEM exchange of views and experience to share.