CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Actively exploited Apache ActiveMQ flaw impacts 6,400 servers

Nonprofit security organization Shadowserver found that over 6,400 Apache ActiveMQ servers exposed online are vulnerable to ...
SecurityWeek

Oracle Patches 450 Vulnerabilities With April 2026 CPU

The April 2026 Oracle CPU includes 481 new security patches addressing 450 unique CVEs across 28 product families.