Coldfusion Security Vulnerabilities and Issues — Coldfusion CVE List

Lucene search

AdobeColdfusion

3 matches found

CVE•added 2006/09/14 12:7 a.m.•42 views

CVE-2006-4726

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 6.1 through 7.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving a ColdFusion error page.

2.6CVSS5.8AI score0.02039EPSS

CVE•added 2006/09/14 12:7 a.m.•39 views

CVE-2006-4725

Adobe ColdFusion MX 7 and 7.01 allows local users to bypass security restrictions and call components (CFC) within a sandbox from CFML templates that are located outside of the sandbox.

4.6CVSS6.3AI score0.00254EPSS

CVE•added 2006/09/14 12:7 a.m.•36 views

CVE-2006-4724

Unspecified vulnerability in the ColdFusion Flash Remoting Gateway in Adobe ColdFusion MX 7 and 7.01 allows remote attackers to cause a denial of service (infinite loop) via unspecified vectors involving a crafted command.

5CVSS7AI score0.01973EPSS