CVE-2026-26336: Unauthenticated Arbitrary File Read in Alfresco Share
The CVE record is available at: https://www.cve.org/cverecord?id=CVE-2026-26336 . This post covers only CVE-2026-26336, which affects Alfresco Share.
Blog Posts
Hyland Alfresco customer survey: your input matters
We’re inviting Hyland Alfresco customers to participate in a brief survey to help us better understand how you use Alfresco Share today and how you’re planning to adopt, or have adopted, Alfresco Digital Workspace and the Alfresco Development Framewo...
TTL #176 - Extending Alfresco with the Addons Catalog: from on-prem to Docker and Kubernetes
Extending Alfresco with addons may look simple, but it changes depending on how you deploy. Installing a JAR on an on-prem server is not the same as building a Docker image or deploying in Kubernetes.
TTL #175 Recording - Running LLMs locally: practical setups from development to production
Did you miss Tech Talk Live #175 - Running LLMs locally: practical setups from development to production? The recording and the slides are available!
The Alfresco Community went to FOSDEM 2026 and all I got was this blog post
FOSDEM 2026: What Alfresco and Content Lake Developers Should Know
TTL #175 - Running LLMs locally: practical setups from development to production
Large Language Models are changing how we build applications that work with content. However, using them in the development cycle is not trivial. Privacy, performance, and infrastructure are the main parts of the equation. In this session, we focus o...
TTL #174 recording - Hyland's Next Open Source Project
Did you miss Tech Talk Live #174 -Hyland's Next Open Source Project — Deploy Production AI Without Migrating to the Cloud ?The recording is available, please help yourself.
Shared Secret Communication Mode for Repository and SOLR
This blog post includes configuration settings to use the new Alfresco/SOLR Communication mode based in Shared Secret via HTTP Header. This method is only available from ACS 7.1
Security Advisory: CVE-2025-66516, XXE Exposure in Apache Tika and Its Impact on Alfresco
Security Advisory: CVE-2025-66516, XXE Exposure in Apache Tika and Its Impact on Alfresco Repository and Transform Core A critical XML External Entity vulnerability (CVE-2025-66516) has been identified in Apache Tika. Crafted PDF files containing XFA...
TTL #174 - Hyland's Next Open Source Project — Deploy Production AI Without Migrating to the Cloud
Willing to leverage AI but struggling with regulations or high-security environments? The cloud isn't always an option — but that shouldn't limit your AI capabilities. Join us for a tech talk about solving your real-world challenges.
Alfresco Community Edition 25.3 Release Notes
Release Notes for Alfresco Community Edition 25.3.0 This release contains enhancements completed for the release of Alfresco Content Services 25.3. In addition, this release contains an updated stack of supported databases, operating systems and plat...
Share your Alfresco innovation story at CommunityLIVE 2026
Are you using Alfresco technologies to solve real business challenges, accelerate automation, or unlock new insights from content? Then you have a powerful story to tell and we want to hear it.
Alfresco Developer Resources
Alfresco has a huge ecosystem, but it only becomes really useful when you know which resource to use for which problem. This post is meant to be that map, with enough detail for new developers and enough depth for experienced ones who want to discove...
TTL #173 recording - Exploring the Alfresco Community Ecosystem
Did you miss Tech Talk Live #173 - Exploring the Alfresco Community Ecosystem? The recording and the slides are available!
Enhanced Backward Compatibility in ACA 7.2.0 and ADW 7.2.0
Announcing significant improvements to version compatibility in Alfresco Digital Workspace (ADW) 7.2.0 and Alfresco Content Application (ACA) 7.2.0. These enhancements ensure that ADW/ACA now seamlessly supports both the latest and one previous major...
[SPANISH] Grabación de Tech Talks en Vivo #2 - Vibe Coding con Alfresco
De CommunitLIVE a la nueva platforma Open Source. Sumérgete en una hora de inspiración práctica y creativa con Alfresco. Comenzaremos con un repaso de lo mejor de Hyland CommunityLIVE US y EU, destacando cómo la comunidad impulsa la innovación en tor...
Safe, Fast, and Flexible: Running Untrusted Code for Alfresco with E2B and Docker
How to safely run dynamic, untrusted, or AI-generated code against repository content?. Whether it’s an LLM suggesting a quick data-extraction script, or a user-uploaded rule that needs to analyze a document, the question is the same.
Alfresco Content Connector for SAP ILM is available
Alfresco Content Connector for SAP ILM has been released, enabling Alfresco customers to reduce operational costs of SAP ILM while ensuring compliant data management.
How to Report Security Issues for Alfresco
Let’s talk about something important: security Every once in a while, community members find something that looks suspicious or might pose a risk in Alfresco. That’s great and appreciated. Responsible reporting is one of the best ways we can all help...
Create and Edit Site Dialog Customization with Aikau
IntroductionIf you've tried out the Early Access Community Release (201611) of Alfresco you might have noticed that in version 5.2 the Create and Edit site dialogs are now being rendered by Aikau. As well as providing some user experience improvement...
-
angelborroy
on:
Security update: CVE-2026-26337, CVE-2026-26338, C...
-
angelborroy
on:
CVE-2026-26336: Unauthenticated Arbitrary File Rea...
-
angelborroy
on:
Share your Alfresco innovation story at CommunityL...
-
ttoine
on:
Your workflows broke after upgrading Alfresco?
-
Zhihai_Liu
on:
Tech Talk Live #165 Recording - Exploring ActiveMQ...
-
Rajeshkumar_Jha
on:
Customer Advisory for ACS versions 23.3.0, 23.3.1,...
-
Rob86
on:
Critical Bug in Alfresco Community: 23.3.0 and 23....
-
ranjeetsi
on:
Tech Talk Live #165 - Exploring ActiveMQ in Alfres...
-
Corentin_Boisse
on:
Tech Talk Live #164 Recording - Demo of the Model ...
-
AdelaideNx-HSI
on:
Transitioning to support.hyland.com: A New Home fo...
