Learn Spring and Java by Example

I am a software engineer that likes to experiment in my free time. This site holds my collection of coding examples, tutorials, and more.


Spring4Shell remediation guide

Two new (and unrelated) vulnerabilities (CVE-2022-22965) and (CVE-2022-22963) have been published at the same time, creating confusion and headaches for all involved trying to remediate them. It is important to understand that these two vulnerabilities are not related. They affect different libraries and require different vectors of attack. What exactly are these vulnerabilities? CVE-2022-22965 - identifies the ability …