CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Actively exploited Apache ActiveMQ flaw impacts 6,400 servers

Nonprofit security organization Shadowserver found that over 6,400 Apache ActiveMQ servers exposed online are vulnerable to ...

Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
Visual Studio Magazine

VS Code Updates Boost AI Agents, Terminal Control and Copilot Workflow

Across the April 8 and April 15, 2026 releases, Visual Studio Code expanded its agent-focused tooling with a new companion app, better terminal interaction, session debugging and more built-in Copilot ...