Upgrading Struts 1.2.7 to Struts 1.2.8
N.B. The primary motivation for Struts 1.2.8 was to fix a Cross Site Scripting (XSS) vulnerability. See StrutsXssVulnerability for more details.
Only the struts.jar needs to be upgraded - all Struts dependencies remain the same as Struts 1.2.7.
2. Commons Validator 1.2.0
2.2 Validator 1.2.0 Features
For details of Commons Validator 1.2.0 see ...