CVE-2026-24400 - **XXE Vulnerability in AssertJ's XmlStringPrettyFormatter – Exploit Details and Remediation Guide
AssertJ is one of the most popular libraries for fluent assertions in Java testing. While it makes tests expressive and readable, a serious XML External
CVE-2025-46295 - How Apache Commons Text Vulnerability Put FileMaker Server at Risk
CVE-2025-46295 is the identifier for a high-risk vulnerability in Apache Commons Text, a widely used Java library. In this long read, we’ll break down
CVE-2025-66516 - Critical XXE Vulnerability in Apache Tika Core, PDF Module, and Parsers
A major security flaw has been found in Apache Tika affecting its tika-core (1.13-3.2.1), tika-pdf-module (2..-3.2.1), and tika-parsers (1.
CVE-2025-12383 - Race Condition in Eclipse Jersey SSL Setup – From Handshake Failures to Insecure Trust (Exclusive Deep Dive)
Eclipse Jersey is a widely used framework for building RESTful web services in Java. In March 2025, a critical vulnerability was discovered and tracked as
CVE-2025-12817 - PostgreSQL CREATE STATISTICS Authorization Flaw Can Crash Other Users
A missing authorization check in the PostgreSQL CREATE STATISTICS command allows any table owner to "hog" statistic names across all schemas—locking out
Episode
00:00:00
00:00:00