Apache Apex: source code security analysis report

Several vulnerabilities were discovered in The Apache Software Foundation 'Apache Apex' software: Using XSL Transformation to Execute Any Code Missing Verification of Executable Files' Digital Signature when Executing them from Untrusted Sources HttpOnly Cookies Incorrect User Input Filtration wh...

java reverse sequence tool ysoserial analysis-vulnerability warning-the black bar safety net

About java deserialization vulnerability the principles of analysis, basic are is in the analysis of the use of the Apache Commons Collections library, causing deserialization problems. However, downloading foreigner ysoserial tool and carefully look after, I found many worthy of learning the...

cve-2 0 1 4-7 9 1 1 Android mention the right vulnerability analysis-vulnerability warning-the black bar safety net

CVE-2 0 1 4-7 9 1 1 by Jann Horn discovered a about Android to mention the right vulnerability, the vulnerability allows malicious applications from the normal application permissions to provide the right to the system user executing the command, the vulnerability information with the POCsee 1 fo...

OpenJDK: reflection API incorrect checks for proxy classes (Libraries, 7197546, SE-2012-01 Issue 29)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.240 and earlier, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vecto...