This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to exploit an arbitrary code execution vulnerability in Apache Struts.
Apache Struts is a framework for building web applications.
The application is prone to multiple remote command-execution vulnerabilities. Specifically, these issues occur because the application fails to sanitize user-supplied input submitted to the 'action:', 'redirect:', and 'redirectAction:' parameters.
- Apache Struts 2.0.0 prior to 220.127.116.11 are vulnerable.
Updates are available. Please see the references or vendor advisory for more information.