[DepShield] org.apache.struts:struts2-core:2.3.1 is vulnerable to [CVE-2016-4436] Apache Struts 2 before 2.3.29 and 2.5.x before 2.5.1 allow attackers to have uns...

[sonatype-depshield-ci[bot]]

Component: org.apache.struts:struts2-core:2.3.1
CVSS Score: 9.8
Vulnerability: [CVE-2016-4436] Apache Struts 2 before 2.3.29 and 2.5.x before 2.5.1 allow attackers to have uns...

Details about the vulnerability are available on the OSS Index page for [CVE-2016-4436] Apache Struts 2 before 2.3.29 and 2.5.x before 2.5.1 allow attackers to have uns....

_{This is an automated GitHub Issue created by Sonatype DepShield. GitHub Apps, including DepShield, can be managed from the Developer settings of the repository administrators.}

[sonatype-depshield-ci[bot]]

Thank you for being an early adopter of DepShield. In an effort provide a more component-centric view of vulnerabilities we are consolidating your issue(s), moving them to a new format, and closing this issue. You can find the new issue here: #34