1. Apache Log4j Core XmlLayout Vulnerability CVE-2026-34480 Allows Invalid XML Output
A medium-severity vulnerability has been identified in Apache Log4j Core's XmlLayout component, affecting versions up to and including 2.25.3. The flaw centers on insufficient sanitization of characters prohibited by the XML 1.0 specification, according to a GitHub Issues report referencing commit 4f5014229825d8be97766...