On November 5, 2018, the Apache Struts Team released a security announcement urging an upgrade of the Commons FileUpload library to version 133 on systems using Struts 2336 or earlier releases Systems using earlier versions of this library may be exposed to attacks that could allow execution of arbitrary code or modifications of files on the s ...