Lucene search
K

5 matches found

Circl
Circl
added 2024/06/02 5:16 p.m.6 views

CVE-2023-44352

creationtimestamp| type| source ---|---|--- 2024-06-02 17:16:13+00:00| published-proof-of-concept| https://t.me/brutsecurity/455...

6.1CVSS6.5AI score0.84811EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/11/17 1:31 p.m.17 views

CVE-2023-44352 Unauthenticate Reflected XSS on Adobe Coldfusion 2018 - 2021 - 2023 last version

Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within th...

6.1CVSS5.7AI score0.84811EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/17 1:31 p.m.31 views

CVE-2023-44352 Unauthenticate Reflected XSS on Adobe Coldfusion 2018 - 2021 - 2023 last version

Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within th...

6.1CVSS6.1AI score0.84811EPSS
Exploits0References1
CVE
CVE
added 2023/11/17 1:31 p.m.122 views

CVE-2023-44352

Adobe ColdFusion: Reflective XSS affecting 2023.5 (and earlier) and 2021.11 (and earlier). An unauthenticated user can lure a victim to a crafted URL that executes malicious JavaScript in the browser, potentially compromising session data. Affected component is the web interface that handles the ...

6.1CVSS5.9AI score0.84811EPSS
In wildExploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.69 views

Adobe ColdFusion < 2021.x < 2021u12 / 2023.x < 2023u6 Multiple Vulnerabilities (APSB23-52)

The version of Adobe ColdFusion installed on the remote Windows host is prior to 2021.x update 12 or 2023.x update 6. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-52 advisory. - Deserialization of Untrusted Data CWE-502 potentially leading to Arbitrary code...

9.8CVSS7.4AI score0.84811EPSS
Exploits0References7
Rows per page
Query Builder