The Apache Software Foundation released a patch on Tuesday for a critical vulnerability impacting all versions of Struts since 2008.
Source: Threadpost