There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads.

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from sel

Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protoco

An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the sa

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting