Dark Reading

Zero-Day Vulnerability Discovered in Java Spring Framework

A zero-day vulnerability found in the popular Java Web application development framework Spring likely puts a wide variety of Web apps at risk of remote attack, security researchers disclosed on March ...
ADTmag

Java Framework Makers Ship Fixes, Security Patches, and Milestone Builds in March Sprint

Several widely used Java frameworks and tools released new versions in the weeks surrounding Oracle's March 17 launch of JDK 26, as the Spring ecosystem and related projects continued iterating toward ...
Bleeping Computer

New Spring Java framework zero-day allows remote code execution

A new zero-day vulnerability in the Spring Core Java framework called 'Spring4Shell' has been publicly disclosed, allowing unauthenticated remote code execution on applications. Spring is a very ...
adtmag.com

JHipster 9.0.0-beta.2 lands with Spring Boot 4 upgrades and a clear message for Java teams: it's Java 21 time

The JHipster team has shipped JHipster 9.0.0-beta.2, a follow-up to the project's first 9.0 beta, aimed squarely at improving generator stability while pushing the stack forward with Spring Boot 4.x.
USA Today

Java: How to fix your biggest Internet security risk

Internet browsers use Java for interactive Web content Program is a major target for hackers Update to the most recent version to avoid security risks The weekly — sometimes daily — security scares ...
InfoQ

Spring Framework 4 and Java 8

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
TheServerSide

Spring, Quarkus or Jakarta EE? How to choose a Java framework

The first decision to kick off a greenfield Java project usually sounds breezy: "Let's start with Spring Boot, it's everywhere." A few days in, someone mutters that Quarkus boots faster and saves ...