Apache Struts CookBook/Examples Multiple Cross-Site Scripting Vulnerabilities

Summary
This host is running Apache Struts and is prone to multiple Cross-site scripting vulnerabilities.
Impact
Successful exploitation could allow an attacker to execute arbitrary HTML code in a user's browser session in the context of a vulnerable application. Impact Level: Application.
Solution
Update Apache Struts to version 2.3.3 or later, For updates refer to http://struts.apache.org/download.cgi
Insight
Multiple flaws due to an, - Input passed via the 'message' parameter in 'processSimple.do' and 'processDyna.do' action is not properly verified before it is returned to the user. - Input passed via the 'name' and 'queryParam' parameter in '/struts-examples/upload/upload-submit.do' action is not properly verified before it is returned to the user.
Affected
Apache Struts (cookbook, examples) version 1.3.10 and prior.