Apache Dubbo 代码问题漏洞

Apache Dubbo is a lightweight Java-based RPC remote procedure call framework from the Apache Foundation in the United States. The product provides interface-based remote calling, fault tolerance and load balancing, and automatic service registration and discovery.A security vulnerability exists i...

Apache Dubbo suffers from a deserialization vulnerability

Apache Dubbo is Apache's a lightweight Java-based RPC Remote Procedure Call framework. Apache Dubbo has a deserialization vulnerability that can be exploited by an attacker to gain control of the server...

jfinal logic flaw vulnerability

JFinal is a Java-based language WEB ORM open source framework. A processing logic error vulnerability exists in jfinal, which originates in jfinal version 4.9.08 and below in applications that use redis, and can be exploited by an attacker to potentially cause remote code execution...

NSA to release its GHIDRA reverse engineering tool for free

The United States' National Security Agency NSA is planning to release its internally developed reverse engineering tool for free at the upcoming RSA security conference 2019 that will be held in March in San Francisco. The existence of the framework, dubbed GHIDRA, was first publicly revealed by...