17 matches found
CVE-2025-32390 EspoCRM vulnerable to HTML Injection into phishing, which may lead to account takeover
EspoCRM is a free, open-source customer relationship management platform. Prior to version 9.0.8, HTML Injection in Knowledge Base KB articles leads to complete page defacement imitating the login page. Authenticated users with the read knowledge article privilege can browse to the KB article and...
PT-2025-20690 · Espocrm · Espocrm
Name of the Vulnerable Software and Affected Versions: EspoCRM versions prior to 9.0.8 Description: The issue allows for HTML Injection in Knowledge Base KB articles, leading to complete page defacement that can imitate the login page. Authenticated users with the read knowledge article privilege...
Netscaler Troubleshooting (Tools, Logs, Performance)
Introduction This article provides a list of Knowledge Base resources on how to troubleshoot, setup and diagnose most common issues based on memory, CPU, license. Overview of the Issue Below list of articles will provide you an outline of logs which will help you to easily identify a possible CPU...
Cumulative Update 18 for Exchange Server 2016
Cumulative Update 18 for Exchange Server 2016 Cumulative Update 18 for Microsoft Exchange Server 2016 was released on September 15, 2020. This cumulative update includes fixes for nonsecurity issues and all previously released fixes for security and nonsecurity issues. These fixes will also be...
Design/Logic Flaw
All versions of FactoryTalk View SE disclose the hostnames and file paths for certain files within the system. A remote, authenticated attacker may be able to leverage this information for reconnaissance efforts. Rockwell Automation recommends enabling built in security features found within...
Cumulative Update 1 for Exchange Server 2019
Cumulative Update 1 for Exchange Server 2019 Cumulative Update 1 for Microsoft Exchange Server 2019 was released on February 12, 2019. This cumulative update is a security update. It includes fixes for nonsecurity issues and all previously released fixes for security and nonsecurity issues. These...
Cumulative Update 22 for Exchange Server 2013
Cumulative Update 22 for Exchange Server 2013 Cumulative Update 22 for Microsoft Exchange Server 2013 was released on February 12, 2019. This cumulative update is a security update. This cumulative update includes fixes for nonsecurity issues and all previously released fixes for security and...
Quarterly SPM Support Bulletin 2015 Q4
Question Quarterly SPM Support Bulletin 2015 Q4 Answer SPM Support Bulletin ICM 9.0.2 Released ICM 9.0.2 has been released. You can find the release documentation here. Highlights include; setting scheduler properties per process allowing more flexible on error handling, new charts in Presenter...
Security update 2018-06-19
...
Description of the security update for Excel 2003: October 10, 2006
Description of the security update for Excel 2003: October 10, 2006 Microsoft has released security bulletin MS06-059. The security bulletin contains all the relevant information about the security update for Microsoft Office Excel 2003. This information includes file manifest information and...
ISC Releases Security Advisories for DHCP, BIND
The Internet Systems Consortium ISC has released updates or workarounds that address vulnerabilities in versions of ISC Dynamic Host Configuration Protocol DHCP and Berkeley Internet Name Domain BIND. A remote attacker could exploit these vulnerabilities to cause a denial-of-service condition...
Internet Systems Consortium (ISC) Releases Security Updates for BIND
ISC has released security updates to address vulnerabilities in BIND. Exploitation of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition. Available updates include: BIND 9 version 9.9.8 BIND 9 version 9.10.3 BIND 9 version 9.9.8-S1 Users and administrators ar...
VMSA-2014-0010 : VMware product updates address critical Bash security vulnerabilities (Shellshock)
a. Bash update for multiple products. Bash libraries have been updated in multiple products to resolve multiple critical security issues, also referred to as Shellshock. The Common Vulnerabilities and Exposures project cve.mitre.org has assigned the identifiers CVE-2014-6271, CVE-2014-7169,...
Support has ended for Office 2003
Support has ended for Office 2003 Last updated 2014-10-28Support for Office 2003 has ended. All of your Office 2003 apps will continue to function. However, you could expose yourself to serious and potentially harmful security risks. Upgrade to a newer version of Office so you can stay up to date...
Description of the cumulative update for Lync Server 2010, Mediation Server: November 2011
Describes the bugs that are fixed in the November, 2011 cumulative update package for Lync Server 2010.SummaryThis article describes the issue that is fixed in the update package for Microsoft Lync Server 2010, Mediation Server that is dated November 2011.This article describes the following item...
Security update 1970-01-01
...
Security update 1970-01-01
...