CVE-2026-27508

CVE-2026-27508 affects Smoothwall Express versions prior to 3.1 Update 13. The issue is a reflected XSS in the /redirect.cgi endpoint caused by improper sanitation of the url parameter. Attackers can craft URLs containing javascript: schemes that execute arbitrary JavaScript in a victim’s browser...

Vulnerability fixed in Adobe ColdFusion

Adobe has fixed a vulnerability in ColdFusion. A malicious party can exploit the vulnerability to bypass a security measure to bypass the vulnerability and thus gain access to sensitive data in the affected Adobe ColdFusion application. Adobe has released updates to fix the vulnerability in...

Microsoft Exchange Server Security Vulnerability

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A security vulnerability exists in Microsoft Exchange Server. An attacker can exploit the...

PT-2022-26590 · Apple · Macos Monterey +6

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.7.1 iPadOS versions prior to 15.7.1 macOS Ventura versions prior to 13 watchOS versions prior to 9.1 iOS versions prior to 16.1 iPadOS versions prior to 16 macOS Monterey versions prior to 12.6.1 macOS Big Sur version...

McAfee ePolicy Orchestrator Multiple Vulnerabilities (SB10379)

The instance of McAfee ePolicy Orchestrator installed on the remote host is affected by multiple vulnerabilities, including the following: - McAfee Enterprise ePolicy Orchestrator ePO prior to 5.10 Update 13 allows a local attacker to point an ePO server to an arbitrary SQL server during the...

Product update: Virtuozzo 7.0 Update 13 Hotfix 3 (7.0.13-306)

The Hotfix 3 for Virtuozzo 7.0 Update 13 provides a stability and usability bug fix. Vulnerability id: VSTOR-32856, VSTOR-32857 Unreadable files may be created when using erasure coding during the upgrade from Update 12 to 13. Fix such files with the command 'vstorage -c -A set-attr -p...

Product update: Virtuozzo 7.0 Update 13 Hotfix 2 (7.0.13-305)

The Hotfix 2 for Virtuozzo 7.0 Update 13 provides stability and usability bug fixes. Vulnerability id: PSBM-102741 Ability to check and fix containers with broken BAT. Vulnerability id: PSBM-102751 Under certain conditions, MDS could crash...

Product update: Virtuozzo 7.0 Update 13 Hotfix 1 (7.0.13-302)

The Hotfix 1 for Virtuozzo 7.0 Update 13 provides stability and usability bug fixes. Vulnerability id: PSBM-101223, PSBM-102156 Unable to live-migrate container with splunk, sensu, ossec-hids tools running inside. Vulnerability id: PSBM-102472 systemd 219-67.vl7.4 not working after the update...

Product update: Virtuozzo 7.0 Update 13 (7.0.13-298)

The Update 13 for Virtuozzo 7.0 introduces new features and provides stability and usability bug fixes. It also introduces a new kernel 3.10.0-1062.12.1.vz7.131.10. Vulnerability id: PSBM-95072 'pstorage-target' files are left over after successful migrations of VMs on Virtuozzo Storage from...

Security Bulletin: Vulnerabilities in DHCP affect PowerKVM

Summary PowerKVM is affected by vulnerabilities in DHCP. IBM has now addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2018-5733 DESCRIPTION: ISC DHCP is vulnerable to a denial of service. By sending an overly large amount of packets, a remote attacker could overflow a reference...

Adobe ColdFusion Cross-Site Scripting Vulnerability (CNVD-2018-10345)

Adobe ColdFusion is the United States of America Audobee Adobe a dynamic Web server products, which runs the CFML ColdFusion Markup Language is a programming language for Web applications. A cross-site scripting vulnerability exists in Adobe ColdFusion released in 2016 Update 5 and earlier versio...

Cross site scripting

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure...

Xxe

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure...

Adobe ColdFusion Multiple Vulnerabilities (APSB17-30)

Adobe ColdFusion is prone to information disclosure and remote code execution RCE vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Design/Logic Flaw

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment...

CVE-2013-1484

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...

CVE-2013-1484

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...

Mac OS X : Java for Mac OS X 10.6 Update 13

The remote Mac OS X host has a version of Java for Mac OS X 10.6 that is missing Update 13, which updates the Java version to 1.6.041. It is, therefore, affected by several security vulnerabilities, the most serious of which may allow an untrusted Java applet to execute arbitrary code with the...

RHEL 4 / 5 : java-1.5.0-sun (RHSA-2007:0963)

Updated java-1.5.0-sun packages that correct several security issues are now available for Red Hat Enterprise Linux 4 Extras and 5 Supplementary. This update has been rated as having important security impact by the Red Hat Security Response Team. The Java Runtime Environment JRE contains the...

Java SE Runtime Environment JRE 6 Update 13 - Multiple Vulnerabilities

Java SE Runtime Environment JRE 6 Update 13 - Multiple Vulnerabilities ------------------------------------------------------------------------- Java SE Runtime Environment - JRE 6 Update 13 Multiple Vulnerabilities url: http://java.sun.com/ Author: shinnai mail: shinnaiatautisticidotorg site:...