EUVD-2013-5168

Malware in sbrugna...

CVE-2013-5328

Adobe ColdFusion 10 before Update 12 allows remote attackers to read arbitrary files via unspecified vectors...

CVE-2024-20767 Adobe Coldfusion Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CVE-2024-20767 - Adobe Coldfusion Arbitrary File Read', 'Description' = %q This module exploits an Improper Access Vulnerability in Adobe...

Adobe ColdFusion < 2021 Update 12 / < 2023 Update 6 Cross-Site Scripting

Adobe ColdFusion prior to versions 2021 Update 12 or 2023 Update 6, suffer from a Cross-Site Scripting vulnerability through a specially forged URL. No source data...

Exploit for Improper Access Control in Adobe Coldfusion

CVE-2024-20767 Exploit for Adobe ColdFusion 🛠️ This repositor...

Adobe ColdFusion < 2021 Update 12 / < 2023 Update 6 Remote Code Execution

Adobe ColdFusion prior to versions 2021 Update 12 or 2023 Update 6, suffer from an Insecure Deserialization vulnerability through the argumentCollection parameter on /CFIDE/wizards/common/utils.cfc endpoint. By leveraging this vulnerability, a remote unauthenticated attacker could achieve a remot...

Vulnerabilities fixed in Adobe Coldfusion

Adobe has fixed vulnerabilities in Coldfusion. A unauthenticated remote malicious person could exploit them to bypass a security measure and execute arbitrary execute arbitrary code with permissions from the application that uses Coldfusion uses and thus potentially gain access to sensitive data...

Microsoft Exchange Server Security Vulnerability

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A security vulnerability exists in Microsoft Exchange Server. An attacker can exploit the...

Product update: Virtuozzo 6.0 Update 12 Hotfix 53 (6.0.12-3760)

This update provides a stability fix. Vulnerability id: PSBM-104691 Disk space consumption could grow unconditionally during vzfs to ploop conversion...

Product update: Virtuozzo 7.0 Update 12 Hotfix 3 (7.0.12-361)

The Hotfix 3 for Virtuozzo 7.0 Update 12 provides stability and usability bug fixes. Vulnerability id: PSBM-100126 Ploop is corrupted after node reboot repair image outgrows device size. Vulnerability id: PSBM-101150 vzstat does not show actual IO and IOPS load and limits. Vulnerability id:...

Product update: Virtuozzo 7.0 Update 12 Hotfix 2 (7.0.12-354)

The Hotfix 2 for Virtuozzo 7.0 Update 12 provides stability and usability bug fixes. Vulnerability id: PSBM-98208 vzlicmonitor could incorrectly show license state as "GRACED". Vulnerability id: PSBM-99949 Unable to restore corrupted ploop images with ploopdefrag. Vulnerability id: PSBM-101024...

Product update: Virtuozzo 7.0 Update 12 Hotfix 1 (7.0.12-338)

The Hotfix 1 for Virtuozzo 7.0 Update 12 provides stability and usability bug fixes. It also introduces a new kernel 3.10.0-1062.4.2.vz7.116.7. Vulnerability id: PSBM-100079, PSBM-100093 VMs with inconsistent bitmaps could not be migrated. Vulnerability id: PSBM-100158 Kernel memory leak on VM st...

Important product security update: Virtuozzo 6.0 Update 12 Hotfix 49 (6.0.12-3754)

This update provides a security and a stability fix. Vulnerability id: CVE-2019-15681, PSBM-99817 libVNCServer-0.9.10 contains a memory leak in VNC server code, which may allow an attacker to read stack memory...

Product update: Virtuozzo 7.0 Update 12 (7.0.12-328)

The Update 12 for Virtuozzo 7.0 provides new features as well as stability and usability bug fixes. It also introduces a new kernel 3.10.0-1062.4.2.vz7.116.6. Vulnerability id: PSBM-96303 Unable to restore LUKS partition from backup if source image format is not specified. Vulnerability id:...

Product update: Virtuozzo 6.0 Update 12 Hotfix 47 (6.0.12-3751)

This update provides a stability and usability fix. Vulnerability id: PSBM-48818 prlbackupclient could continue running even after prlbackupserver had exited. This could prevent further backups from being created...

Product update: Virtuozzo 6.0 Update 12 Hotfix 42 (6.0.12-3742)

This update provides a stability fix. Vulnerability id: PSBM-95243 Increased stability of license update process...

Product update: Virtuozzo 6.0 Update 12 Hotfix 41 (6.0.12-3741)

This update provides hypervisor-related fixes for the Microarchitectural Store Buffer Data MDS vulnerability as well as a stability fix. Vulnerability id: PSBM-94407 The Microarchitectural Store Buffer Data MDS is a series of hardware vulnerabilities which allow speculative execution attacks on...

Product update: Virtuozzo 6.0 Update 12 Hotfix 27 (6.0.12-3708)

This hotfix provides stability and usability fixes. Vulnerability id: PSBM-80032 prlvzvncserverapp did not honor the --listen parameter that forced VNC server to listen on a specific IP address. Vulnerability id: PSBM-84831 Unable to install Virtuozzo 6 guest tools in a VM running Centos 7 with...

Important kernel security update: CVE-2018-3639; new kernel 2.6.32-042stab130.1; Virtuozzo 6.0 Update 12 Hotfix 25 (6.0.12-3705)

This update provides a new kernel 2.6.32-042stab130.1 for Virtuozzo 6.0 that is a rebase to the Red Hat Enterprise Linux 6.9 kernel 2.6.32-696.30.1.el6. The new kernel introduces security and stability fixes. Vulnerability id: CVE-2018-3639 An industry-wide issue was found in the way many modern...

Tools update: Virtuozzo 6.0 Update 12 Hotfix 24 (6.0.12-3704)

This update provides new packages with a stability fix for Virtuozzo 6.0. Vulnerability id: PSBM-84570 After upgrading guest OS to CentOS 7.5, ploop-based containers with enabled second-level quotas could fail to start due to the failure of the 'quotacheck' binary from the updated 'quota' package...