Coldfusion@* Security Vulnerabilities and Issues — Coldfusion@* CVE List

Lucene search

AdobeColdfusion*

4 matches found

CVE•added 2010/08/11 6:47 p.m.•1040 views

CVE-2010-2861

Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepack...

9.8CVSS9.3AI score0.94334EPSS

CVE•added 2010/05/13 5:30 p.m.•46 views

CVE-2010-1293

Cross-site scripting (XSS) vulnerability in the Administrator page in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00816EPSS

CVE•added 2010/05/13 5:30 p.m.•41 views

CVE-2009-3467

Cross-site scripting (XSS) vulnerability in an unspecified method in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

4.3CVSS5.8AI score0.00816EPSS

CVE•added 2010/05/13 5:30 p.m.•36 views

CVE-2010-1294

Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows local users to obtain sensitive information via unknown vectors.

2.1CVSS5.8AI score0.00153EPSS