CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

0day.today•added 2021/06/25 12:0 a.m.•108 views

Adobe ColdFusion 8 - Remote Command Execution Exploit

Exploit Title: Adobe ColdFusion 8 - Remote Command Execution RCE Google Dork: intext:"adobe coldfusion 8" Exploit Author: Pergyz Vendor Homepage: https://www.adobe.com/sea/products/coldfusion-family.html Version: 8 Tested on: Microsoft Windows Server 2008 R2 Standard CVE : CVE-2009-2265...

7.5CVSS0.1AI score0.83865EPSS

Exploits10

Cvelist•added 2011/02/10 3:0 p.m.•21 views

CVE-2011-0582

Unspecified vulnerability in the administrator console in Adobe ColdFusion 8.0 through 9.0.1 allows attackers to obtain sensitive information via unknown vectors...

5.9AI score0.03806EPSS

Exploits0References6

Packet Storm•added 2009/08/17 12:0 a.m.•56 views

Adobe Coldfusion 8 XSS / XSRF

http://www.dsecrg.com/pages/vul/show.php?id=122 Digital Security Research Group DSecRG Advisory DSECRG-09-022 Application: Adobe Coldfusion 8 Versions Affected: Adobe Coldfusion 8 Vendor URL: http://adobe.com Bugs: Multiple Linked XSS,XSRF Exploits: YES Reported: 12.01.2009 Vendor response:...

4.3CVSS0.3AI score0.1614EPSS

Exploits2

seebug.org•added 2008/04/11 12:0 a.m.•42 views

Adobe ColdFusion CFC方式访问绕过安全限制漏洞

BUGTRAQ ID: 28698 CVECAN ID: CVE-2008-1656 ColdFusion MX是一款高效的网络应用服务器开发环境，具有很高的易用性和开发效率，基于标准的Java技术，可以与XML、Web Services和Microsoft.NET环境相集成。 ColdFusion MX的组件访问控制实现上存在漏洞，远程非授权用户可能利用此漏洞获取非授权访问。即使将访问级别设置为public的话，仍可从Flex 2 remoting调用ColdFusion...

7.5CVSS6.5AI score0.02622EPSS

Exploits1

NVD•added 2008/04/09 7:5 p.m.•29 views

CVE-2008-1656

Adobe ColdFusion 8 and 8.0.1 does not properly implement the public access level for CFC methods, which allows remote attackers to invoke these methods via Flex 2 remoting, a different vulnerability than CVE-2006-4725...

7.5CVSS6.5AI score0.02622EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by