This host is running Apache Struts and is prone to Cross Site Scripting Vulnerability.
Successful exploitation will let the attacker issue malicious URL or can inject malicious codes inside the web page contents to gain sensitive information. Impact Level: Application
Upgrade to Apache Struts version 2.1.1 or 18.104.22.168. http://struts.apache.org/download.cgi
This flaw is due to improper sanitization of the user supplied input in '<s:url>' and '<s:a ...>' tag which doesn't encode the URL parameter when specified in the action attribute which causes XSS attacks.
Apache Struts version 2.0 and prior to 22.214.171.124 Apache Struts version 2.1 and prior to 2.1.1