Byc_404

**Name of the Vulnerable Software and Affected Versions** Zimbra Collaboration versions 10.0.x through 10.0.11 Zimbra Collaboration versions 10.1.x through 10.1.3 **Description** The issue is related to a SQL injection vulnerability in the ZimbraSync Service SOAP endpoint due to insufficient sanitization of a user-supplied parameter. Authenticated attackers can exploit this vulnerability by manipulating a specific parameter in the request, allowing them to inject arbitrary SQL queries that could retrieve email metadata. It is estimated that over 420,000 services are potentially affected. **Recommendations** Zimbra Collaboration versions 10.0.x through 10.0.11: Update to version 10.0.12 or later to resolve the issue. Zimbra Collaboration versions 10.1.x through 10.1.3: Update to version 10.1.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the ZimbraSync Service SOAP endpoint until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Concrete CMS versions 8.5.6 and below **Description** A bypass in the Concrete CMS File Manager leads to remote code execution. The external file upload feature stages files in the public directory even if they have disallowed file extensions, storing them in a directory with a random name that can be brute-forced. An admin with file upload capabilities can exploit this to upload restricted file types and execute them, depending on server configuration. **Recommendations** To fix this issue, update to Concrete CMS version 9.0.0 or later, which includes a check for allowed file extensions before downloading files to a tmp directory. As a temporary workaround, consider restricting access to the file upload feature to minimize the risk of exploitation.