The Apache Struts project team confirms that Struts 1 in all versions is
affected by a ClassLoader manipulation vulnerability similar to a
recently fixed vulnerability in Struts 2 (CVE-2014-0112, CVE-2014-0094) [1].
This is a different underlying flaw. For future reference, please use
CVE-2014-011
Github user lukaszlenart commented on the pull request:
https://github.com/apache/struts/pull/8#issuecomment-41650283
Good questions, will check that. I have added `@AllowedMethod({GET, POST,
PUT})` to cover that case
---
If your project is set up for it, you can reply to this email
Github user jogep commented on the pull request:
https://github.com/apache/struts/pull/8#issuecomment-41649975
Is it possible to apply Get and Post together to one method in an action
and Delete to an other?
```
public class MyAction extends ActionSupport {
@
Github user lukaszlenart commented on the pull request:
https://github.com/apache/struts/pull/8#issuecomment-41649420
Ok, I wasn't sure about naming as well, I will rename the annotations to
`@HttpGet`, `@HttpPost`, etc
---
If your project is set up for it, you can reply to this emai
