SummaryUsing the Config Browser plugin in production
Who should read this
All Struts 2 developers and users
Impact of vulnerability
Usage of the Config Browser plugin in a production evnironment
Maximum security rating
Please read the Security guideline
Any Struts 2 version
Yelin from Venustech Inc.
Usage of the Config Browser in a production environment can lead to exposing vunerable information of the application
Please read our Security guideline and restrict access to the Config Browser or do not use in a production environment!
No backward incompatibility issues are expected.