So I recently got a mail about updating to the latest security update to the Apache software installed on my server (vulnerability (CVE-2021-44228 & CVE-2021-45046) related to Apache Log4j), but how can I detect where this log4j is used?
When I run cmd: java --version
I get:
Then I found a github log4j script checker: ./wget.exe https://raw.githubusercontent.com/rubo77/log4j_checker_beta/main/lo g4j_checker_beta.sh -q -O - |bash
, but it didn't tell me that much
Is there another command I could run, to check where this log4j need to be updated on my server?
I do run XAMPP on this machine, but are log4j used here?