Worried about the Strutshock vulnerability?

Use our quick check to see if your website is vulnerable

By clicking the button above, you agree to our Terms of Service

CVE-2017-5638 is a vulnerability in Apache Struts that allows for remote code execution. For more information, visit our blog.



Your server appears to be vulnerable. We recommend upgrading Apache Struts to versions 2.3.32 or Our blog contains further information about the vulnerability.

Not Vulnerable!


Your server is not vulnerable! Either you have already patched, or the URL entered does not point to a server that is running Apache Struts. If this is incorrect, feel free to double check your URL and try again.

There was an error

Foilz unknown color

We're sorry, but there was an error while checking your server. Please check your URL or try again later.