Adobe has released out-of-band security updates to address a critical vulnerability impacting ColdFusion versions 2021, 2016, and 2018. Today's emergency updates patch an arbitrary code execution ...

Adobe announced it has been breached and attackers may have accessed source code for a number of products, and stolen 2.9 million customer records. Attackers accessed customer IDs, encrypted passwords ...

Organizations big and small are once again scrambling to patch critical vulnerabilities that are already under active exploitation and cause the kind of breaches coveted by ransomware actors and ...

Adobe pushed hotfixes to ColdFusion 11 and 10 installations addressing a XXE vulnerability that can be exploited processing OOXML documents. An Adobe ColdFusion vulnerability addressed Tuesday in a ...

KrebsOnSecurity first became aware of the source code leak roughly one week ago, when this author — working in conjunction with fellow researcher Alex Holden, CISO of Hold Security LLC — discovered a ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning about hackers actively exploiting a critical vulnerability in Adobe ColdFusion identified as CVE-2023-26360 to gain initial ...

Matt Woodward is principal IT specialist for the Senate Office of the Sergeant at Arms. He also has his own tech blog at blog.mattwoodward.com/. Although Adobe ...

Macromedia calls CFML "a scripting layer for J2EE." The ability to integrate Java into ColdFusion provides all sorts of opportunities, including access to freely and commercially available Java ...