QLFinding Insecure Deserialization in Java
Our security research team discovered insecure deserialization in Java, specifically in an Apache Struts vulnerability. In this tutorial, learn how you can find java deserialization vulnerabilities using Semmle QL.
September 12, 2019