2 matches found
Adobe ColdFusion scheduleedit.cfm Authentication Bypass (CVE-2013-0625)
An authentication bypass vulnerability has been reported in ColdFusion servers. The vulnerability is due to enabling unauthenticated attacker to create a scheduled task which will be performed and allow attacker-controlled code to be uploaded to the vulnerable server. A remote attacker could...
Adobe ColdFusion Authentication Bypass (CVE-2013-0632)
An authentication bypass vulnerability has been reported in ColdFusion servers. A remote attacker could trigger this through Remote Development Services RDS or Administrator interfaces if they do not require authentication or through CSRF if APSB12-26 has not been applied...