Blog: The blog of a gypsy engineer

218 blogs updated: 59 min. ago show: latest top this week top this month search:

Detecting JEXL injections with CodeQL In this post, I'll talk about a CodeQL query for detecting JEXL Expression Language injection vulnerabilities. First, I'll give a brief over... 9 21-02-2021 13:20:52 The blog of a gypsy engineer Advanced

Reading a photoresistor on ESP32 with MicroPython A photoresistor or a light-dependent resistor (LDR) is a resistor that changes its value (resistance) depending on light intensity. More pre... 4 10-01-2021 14:49:30 The blog of a gypsy engineer Advanced

Measuring CO2 with MH-Z19B on ESP32 In the previous posts, I described a simple weather station that measures temperature and humidity and sends the measurements to a Google sh... 4 01-01-2021 20:05:46 The blog of a gypsy engineer Advanced

New Switch Expressions in Java 14 Java 14 is going to be released on March 17, 2020. The new version of Java contains one major update to the Java language: new switch expres... 3 07-03-2020 22:56:16 The blog of a gypsy engineer Advanced

What is new in Java 14? Java 14 is going to be released on Mar 17th, 2020. Besides 2400 bug fixes and small enhancements, the new version of Java contains 16 major ... 9 09-02-2020 20:24:20 The blog of a gypsy engineer Advanced

CVE-2020-1925: Requests to arbitrary URLs in Apache Olingo Some time ago I wrote about unsafe deserialization and DoS vulnerabilities I've discovered in Apache Olingo. This post describes one more is... 10 26-01-2020 18:48:12 The blog of a gypsy engineer Advanced

CVE-2019-17556: Unsafe deserialization in Apache Olingo Some time ago I wrote about one security issue which I found in the library. This post describes another little vulnerability in Apache Olin... 3 22-12-2019 00:05:58 The blog of a gypsy engineer Advanced

CVE-2019-17555: DoS via Retry-After header in Apache Olingo Apache Olingo is a Java library that implements the Open Data Protocol (OData). This protocol allows the creation and consumption of queryab... 13 13-12-2019 22:59:19 The blog of a gypsy engineer Advanced

Safer deserialization in Spring Security OAuth2 The Java standard library provides the ObjectInputStream class which offers a convenient way for deserializing Java objects. Unfortunately, ... 10 16-11-2019 20:17:43 The blog of a gypsy engineer Advanced

CVE-2019-12415: XML processing vulnerability in Apache POI Apache POI is a popular Java library for working with Microsoft documents. For example, it allows you reading and writing Microsoft Excel fi... 4 03-11-2019 20:09:38 The blog of a gypsy engineer Advanced

load next 10 items

© Jiri Pinkas | this project on GitHub | related: JavaVids | Maven Central Repository Search | Java školení

Top Java Blogs is a Java blog aggregator (with English-written blogs only) focused on Java SE, Java EE, Spring Framework and Hibernate.

Made better & faster using https://www.yourkit.com/ Java Profiler