Hacker

Storing JSON and XML in SQL Databases: An Essential Guide

Hello there! 👋 I'm Luca, a BI Developer with a passion for all things data, Proficient in Python, SQL and Power BI ...
The Hacker News

New SAP NetWeaver Bug Lets Attackers Take Over Servers Without Login

SAP has rolled out security fixes for 13 new security issues, including additional hardening for a maximum-severity bug in SAP NetWeaver AS Java that could result in arbitrary command execution. The ...
SecurityWeek

DELMIA Factory Software Vulnerability Exploited in Attacks

A deserialization of untrusted data in the MOM software allows attackers to achieve remote code execution. Threat actors are exploiting a critical-severity vulnerability in DELMIA Apriso factory ...
Microsoft

From code to community: The collective effort behind SQL Server 2025

At Build 2025, SQL Server 2025 officially entered public preview. As one of the world’s most popular databases, this release continues a decades-long history of innovation with features made for ...
IEEE

Bi-directional Taint Flow Analysis: A High-precision Static Detection Approach for Java ...

Abstract: The Java deserialization vulnerability represents a significant security threat to enterprise applications, enabling attackers to execute malicious code through crafted serialized data.
Microsoft

Announcing SQL Server 2025 (preview): The AI-ready enterprise database from ground to cloud

Organizations are using generative AI to stay ahead of the competition, but the real advantage lies in harnessing the power of your own data securely and at scale. One of the most exciting new ...
The Hacker News

Crypto Developers Targeted by Python Malware Disguised as Coding Challenges

The North Korea-linked threat actor assessed to be behind the massive Bybit hack in February 2025 has been linked to a malicious campaign that targets developers to deliver new stealer malware under ...
CSOonline

Big hole in big data: Critical deserialization bug in Apache Parquet allows RCE

A flaw in code for handling Parquet, Apache’s open-source columnar data file format, allows attackers to run arbitrary code on vulnerable instances. The vulnerability, tracked as CVE-2025-30065, is a ...
GitHub

A YAML deserialization vulnerability was found in the...

This score calculates overall vulnerability severity from 0 to 10 and is based on the Common Vulnerability Scoring System (CVSS). Attack vector: More severe the more the remote (logically and ...
IEEE

JSON Processing and Error Correction in SQL Functions

Abstract: This paper introduces a tool designed to enhance query accuracy in relational databases by automatically detecting and correcting typographical errors in Structured Query Language (SQL) ...
CSOonline

Attackers hide malicious code in Hugging Face AI model Pickle files

The popular Python Pickle serialization format, which is common for distributing AI models, offers ways for attackers to inject malicious code that will be executed on computers when loading models ...
GitHub

json-deserialization

YAML and JSON parser, serializer and deserializer with YAML to JSON and vice versa conversion tools containing pure Object Pascal source code for both Delphi and Lazarus ...