InfoWorld

The Java serialization algorithm revealed

Serialization is the process of saving an object’s state to a sequence of bytes; deserialization is the process of rebuilding those bytes into a live object. The Java Serialization API provides a ...
InfoWorld

How to work with serialization in .Net

Serialization converts an object's state into a stream of bytes so that it can be persisted in a permanent or temporary storage medium When working with applications, you’ll often need to store data ...
Redmond Magazine

Serialize Arrays and ArrayLists to XML

The XmlSerializer class provides a great way to convert (serialize) objects to XML and back (deserialize). However, it can be difficult to serialize collections such as Arrays and ArrayLists properly ...
The Hacker News

Critical LangChain Core Vulnerability Exposes Secrets via Serialization Injection

A critical LangChain Core vulnerability (CVE-2025-68664, CVSS 9.3) allows secret theft and prompt injection through unsafe ...
CSOonline

Java deserialization vulnerabilities explained and how to defend against them

Java provides a means to conveniently serialize data to maintain its integrity as it's sent over a network. Attackers can exploit vulnerabilities in the deserialization process if there aren't ...
Visual Studio Magazine

Serialize Arrays and ArrayLists to XML

The XmlSerializer class provides a great way to convert (serialize) objects to XML and back (deserialize). However, it can be difficult to serialize collections such as Arrays and ArrayLists properly ...