Adobe has released new updates for both Coldfusion 10 and Coldfusion 11. According to Adobe: “This hotfix resolves two input validation issues that could be used in reflected cross-site scripting attacks. This hotfix also includes an updated version of BlazeDS that resolves an important Server-side request forgery vulnerability” This hotfix also updates the version of Tomcat that […]

Read More →

Both Lucee and Oracle have released security updates that may be needed to be applied to your server. Lucee has released a security patch “to fix an XSS vulnerability found in the default error and debug templates”. To update Lucee, simply run the updater from the Lucee Admin to version: 4.5.1.024 (stable branch), 4.5.2.017 (development […]

Read More →