3 matches found
CVE-2017-3008
Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a reflected cross-site scripting vulnerability...
ColdFusion Hotfix Resolves XSS, Java Deserialization Bugs
Adobe today released an important security hotfix for several versions of its ColdFusion rapid web application development platform. The company said the update addresses an input validation vulnerability CVE-2017-3008 in the software that could be used in reflected cross-site scripting XSS...
APSB17-14 Security update available for ColdFusion
Adobe has released security hotfixes for ColdFusion versions 10, 11 and the 2016 release. These hotfixes resolve an input validation issue that could be used in reflected XSS cross-site scripting attacks CVE-2017-3008. These hotfixes also include an updated version of Apache BlazeDS to mitigate...