1. Apache Struts Error Response Cross-Site Scripting Vulnerability
http://www.securityfocus.com/bid/15512/exploit
2.Apache Struts 2, XWork, OpenSymphony WebWork Java Class Path Information Disclosure
http://www.securityfocus.com/archive/1/archive/1/518066/100/0/threaded
3.Struts Multiple Directory Traversal Vulnerabilities
http://www.securityfocus.com/bid/32104/exploit
4.XWork 'ParameterInterceptor' Class OGNL (CVE-2010-1870) Security Bypass Vulnerability
http://www.securityfocus.com/bid/41592/exploit
5.Apache Struts 2 Multiple Reflected XSS in XWork error pages
http://www.securityfocus.com/archive/1/517946
6.Apache Struts Multiple HTML Injection Vulnerabilities
http://www.securityfocus.com/bid/51902/exploit