The Jakarta Parser vulnerability in Apache Struts was found in March 2017. The vulnerability is a remote code execution (RCE) vulnerability that allows attackers to execute malicious code on web servers that use the Apache Struts 2 framework.
The vulnerability was discovered by Man Yue Mo, a security researcher with the Chinese cyber security firm Qihoo 360. Mo discovered the vulnerability while researching a previous vulnerability in the Jakarta Parser library, which is used by the Apache Struts 2 framework.…