TheServerSide

An Apache Commons FileUpload example and the HttpClient

The enterprise Java community has made great strides to simplify file uploads from a web browser to a server. What was once a task that involved many cross-platform complications is now ...
Threat Post

Critical Java Bug Extends to Oracle, IBM Middleware

Researchers have built proof-of-concept exploits for an unpatched unserialize vulnerability in Apache Commons Collections, a library used in most Java rollouts. For close to 10 months, a critical ...
ZDNet

Java unserialize remote code execution hole hits Commons Collections, JBoss, WebSphere, WebLogic

Researchers from Foxglove Security have reportedly discovered a remote code execution hole in the widely used Apache Commons library, thanks to the insecure method in which Java unserializes objects, ...
Ars Technica

Using an external library in Java (Apache Commons and Eclipse)

I'm trying to use one of the Apache Commons libraries (Math 3.3) in Java with Eclipse. (JDK 1.7 and Eclipse 3/JDT 3.7) And I can't get away from NoClassDefFoundError ...
heise online

Apache Commons Text: Code injection vulnerability in older versions

Apache Commons Text is used for processing character strings in Java apps. A critical vulnerability allows the injection of malicious code. In the “Apache Commons Text” library, developers have ...
Dark Reading

Apache Commons Vulnerability: Patch but Don't Panic

Researchers who have analyzed the recently disclosed vulnerability in Apache Commons Text — referred to by some as Text4Shell — described it this week as serious but unlikely to be as disruptive as ...