RE: https://infosec.exchange/@geng/115887837669104560

Apache Struts2 XXE (CVE-2025-68493) was only the beginning. Our ZAST.AI vulnerability research system has antonomous discovered and confirmed critical vulnerabilities in many high-profile projects in 2025

RE: https://infosec.exchange/@geng/115887837669104560

🚨The Apache Struts team has just confirmed a high-severity XXE vulnerability in Apache XWork-Core — CVE-2025-68493. This vulnerability was fully automatically discovered by ZAST.AI, with LLM-generated PoC code and automated verification!

Using Large Language Models To Catch Vulnerabilities In Real-World Code

https://googleprojectzero.blogspot.com/2024/10/from-naptime-to-big-sleep.html