www.lunasec.io

Log4Shell: RCE 0-day exploit found in log4j, a popular Java logging package | LunaSec

Given how ubiquitous this library is, the impact of this vulnerability is quite severe. Learn how to patch it, why it's bad, and more in this post.