CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
Couriermail

Serviceability buffer promise poses string of risks for new buyers

Peter Dutton has pledged to ask the financial regulator to review the mortgage serviceability buffer if elected in May, in a bid to help housing affordability and get more Australians on the property ...