Coldfusion@7.0 Security Vulnerabilities and Issues — Coldfusion@7.0 CVE List

Lucene search

AdobeColdfusion7.0

3 matches found

CVE•added 2008/03/12 12:44 a.m.•48 views

CVE-2008-0644

Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to bypass the cross-site scripting (XSS) protection mechanism for applications via unspecified vectors related to the setEncoding function.

5CVSS5.9AI score0.01883EPSS

CVE•added 2008/03/12 12:44 a.m.•41 views

CVE-2008-0643

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.7AI score0.02799EPSS

CVE•added 2008/03/12 12:44 a.m.•35 views

CVE-2008-1203

The administrator interface for Adobe ColdFusion 8 and ColdFusion MX7 does not log failed authentication attempts, which makes it easier for remote attackers to conduct brute force attacks without detection.

7.5CVSS6.8AI score0.07438EPSS