19 matches found
Adobe Coldfusion - Cross-Site Scripting
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within th...
VulnCheck KEV: CVE-2023-44352
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within th...
PT-2023-31551 · Primx · Primx Cryhod For Windows
Name of the Vulnerable Software and Affected Versions: PRIMX CRYHOD for Windows versions prior to Q.2020.4 PRIMX CRYHOD for Windows versions prior to 2023.5 Description: Encrypted disks created by PRIMX CRYHOD for Windows can be modified by an unauthenticated attacker to include a UNC reference,...
PRIMX ZONECENTRAL Security Vulnerability
PRIMX ZONECENTRAL is an application from PRIMX USA. uses encryption to provide confidentiality services that apply to all documents of an organization. A security vulnerability exists in PRIMX ZONECENTRAL version 2023.5 and prior versions. An attacker could exploit the vulnerability to modify the...
PRIMX Zed Security Vulnerability
Primx PRIMX Zed is a suite of sensitive data encryption software from the French company Primx. A security vulnerability exists in ZED that stems from the presence of a sensitive information disclosure vulnerability. Affected products and versions: ZED Enterprise for Windows versions Q.2020.1,...
PT-2023-31549 · Primx · Primx Zonecentral For Windows
Name of the Vulnerable Software and Affected Versions: PRIMX ZONECENTRAL for Windows versions prior to Q.2021.2 PRIMX ZONECENTRAL for Windows versions prior to 2023.5 Description: Encrypted folders created by PRIMX ZONECENTRAL for Windows can be modified by an unauthenticated attacker to include ...
PT-2023-31552 · Unknown +1 · Zed! For Mac +5
Name of the Vulnerable Software and Affected Versions: ZED! for Windows versions before Q.2020.3 through Q.2021.2 ZONECENTRAL for Windows versions before Q.2021.2 through 2023.5 ZEDMAIL for Windows versions before 2023.5 ZED! for Windows, Mac, Linux versions before 2023.5 Description: The issue...
Adobe ColdFusion Code Execution Vulnerability (CNVD-2023-94490)
Adobe ColdFusion is the United States Odo than Adobe company's set of rapid application development platform. The platform includes an integrated development environment and scripting language. A security vulnerability exists in Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier...
Adobe ColdFusion Code Execution Vulnerability
Adobe ColdFusion is the United States Odo than Adobe company's set of rapid application development platform. The platform includes an integrated development environment and scripting language. A code execution vulnerability exists in Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and...
CVE-2023-44355
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by an Improper Input Validation vulnerability that could result in a Security feature bypass. An unauthenticated attacker could leverage this vulnerability to impact a minor integrity feature. Exploitation of this...
CVE-2023-44353
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by an Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction...
CVE-2023-44350
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by an Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction...
CVE-2023-44350
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by an Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction...
CVE-2023-44353
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by an Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does not require user interaction...
Improper access control
Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An unauthenticated attacker could leverage this vulnerability to access the administration CFM and CFC endpoints...
Adobe ColdFusion 安全漏洞
Adobe ColdFusion is the United States Odo than Adobe company's set of rapid application development platform. The platform includes an integrated development environment and scripting language. A security vulnerability exists in Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and earlier...
PT-2023-20617 · Adobe · Coldfusion
Name of the Vulnerable Software and Affected Versions: Adobe ColdFusion versions 2023.5 and earlier Adobe ColdFusion versions 2021.11 and earlier Description: The issue is related to an Improper Access Control that could result in a Security feature bypass. An unauthenticated attacker could...
Adobe ColdFusion 安全漏洞
Adobe ColdFusion is the United States Odo than Adobe company's set of rapid application development platform. The platform includes an integrated development environment and scripting language. A code execution vulnerability exists in Adobe ColdFusion versions 2023.5 and earlier and 2021.11 and...
Puppet Enterprise Authorization Issues Vulnerability
Puppet is a set of configuration management tools based on a client/server C/S architecture from Puppet Labs in the U.S. It can be used to manage profiles, users, cron tasks, packages, system services, etc. Puppet Enterprise is the enterprise version of Puppet. An authorization issue vulnerabilit...