It will check any security issues in dependencies used by Struts 1.3.
The OWASP Dependency Check Maven plugin is used to do so, and will use the NVD database.
mvn verify
Open the file ./target/dependency-check-report.html or check the console output.
See a report sample there.
The vulnerabilities reported will be those as this page, minus the suppressed false positives : cpe:/a:apache:struts:1.3.10.