Coldfusion Server@4.0.1 Security Vulnerabilities and Issues — Coldfusion Server@4.0.1 CVE List

Lucene search

AllaireColdfusion Server4.0.1

6 matches found

CVE•added 2000/10/13 4:0 a.m.•61 views

CVE-2000-0538

ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password.

5CVSS6.7AI score0.09008EPSS

CVE•added 2000/04/18 4:0 a.m.•51 views

CVE-2000-0057

Cold Fusion CFCACHE tag places temporary cache files within the web document root, allowing remote attackers to obtain sensitive system information.

7.5CVSS6.5AI score0.0322EPSS

CVE•added 2001/09/18 4:0 a.m.•47 views

CVE-1999-0756

ColdFusion Administrator with Advanced Security enabled allows remote users to stop the ColdFusion server via the Start/Stop utility.

5CVSS7AI score0.00655EPSS

CVE•added 2001/05/07 4:0 a.m.•47 views

CVE-1999-0760

Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges.

10CVSS7.2AI score0.00452EPSS

CVE•added 2002/03/15 5:0 a.m.•47 views

CVE-2001-1120

Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2 allow remote attackers to (1) read or delete arbitrary files, or (2) overwrite ColdFusion Server templates.

6.4CVSS6.9AI score0.01777EPSS

CVE•added 2000/04/10 4:0 a.m.•41 views

CVE-2000-0189

ColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend.cfm files.

5CVSS7.1AI score0.00647EPSS