Joakim Bülow

**Name of the Vulnerable Software and Affected Versions** Apache PDFBox versions 2.0.24 through 2.0.36 Apache PDFBox versions 3.0.0 through 3.0.7 **Description** The ExtractEmbeddedFiles example within Apache PDFBox contains a path traversal issue. The filename obtained from `PDComplexFileSpecification.getFilename()` is appended to the extraction path, potentially allowing unauthorized access or modification of files. **Recommendations** For Apache PDFBox versions 2.0.24 through 2.0.36, review any production code that utilizes the ExtractEmbeddedFiles example to ensure the extraction path is acceptable. For Apache PDFBox versions 3.0.0 through 3.0.7, review any production code that utilizes the ExtractEmbeddedFiles example to ensure the extraction path is acceptable.

**Name of the Vulnerable Software and Affected Versions** Neo4j versions prior to 2026.01 **Description** A lack of proper unicode character escaping in the query log functionality can result in cross-site scripting (XSS) if logs are opened in a tool that interprets them as HTML. The issue is present in both Neo4j Enterprise and Community editions. While there is no direct security impact to Neo4j products, the advisory suggests treating logs as plain text. **Recommendations** Update to version 2026.01 or later. Treat query logs as plain text if using versions prior to 2026.01.