> and I personally prefer rest webservices, you can implement them as you want, be it with struts2, spring, python, nodejs...
This is Struts 2 we're talking about, which has something of a history https://threatpost.com/attacks-heating-up-against-apache-struts-2-vulnerability/124183/ . The other frameworks you mention will all have vulnerabilities, the good guys just haven't found, fixed and published them (hopefully in that order) yet.
We have no idea whether the bad guys have found and are even currently exploiting them.
Biting the hand that feeds IT
