We have begun offering SolusVM Master Enterprise licenses to Direct Store customers through the cPanel Store as an option for hypervisor users who wish to utilize the virtualization management software. SolusVM licenses are a new option to purchase, but aren’t a required installation or upgrade. If you’re interested in a control panel for a virtualized environment, read on to find out more. What is SolusVM? SolusVM is a GUI and API based VPS management system with support for platform virtualization tools such as
Comment
Several security issues were fixed in OpenJDK.
Joomla 3.9.15 Release
Jan28
Joomla 3.9.15 is now available. This is a security release for the 3.x series of Joomla which addresses three low security vulnerabilities and contains over 20 bug fixes and improvements.
- Project: Joomla!
- SubProject: CMS
- Impact: High
- Severity: Low
- Versions: 3.9.0-3.9.14
- Exploit type: XSS
- Reported Date: 2019-December-25
- Fixed Date: 2020-January-28
- CVE Number: CVE-2020-xxxxx
Description
Inadequate escaping of usernames allow XSS attacks in com_actionlogs.
Affected Installs
Joomla! CMS versions 3.9.0 – 3.9.14
Solution
Upgrade to version 3.9.15
Contact
The JSST at the Joomla! Security Centre.
Reported By: Mayank Kumbhar from Techjoomla
- Project: Joomla!
- SubProject: CMS
- Impact: High
- Severity: Low
- Versions: 3.0.0-3.9.14
- Exploit type: CSRF
- Reported Date: 2019-December-18
- Fixed Date: 2020-January-28
- CVE Number: CVE-2020-xxxxx
Description
A missing CSRF token check in the LESS compiler of com_templates causes a CSRF vulnerability.
Affected Installs
Joomla! CMS versions 3.0.0 – 3.9.14
Solution
Upgrade to version 3.9.15
Contact
The JSST at the Joomla! Security Centre.
Reported By: Lee Thao from Viettel Cyber Security