Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 7.0.2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-0643
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 and ColdFusion 8 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 7.0.2
Adobe Coldfusion 8.0
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
5
CVSSv2
CVE-2008-0644
Adobe ColdFusion MX 7 and ColdFusion 8 allows remote malicious users to bypass the cross-site scripting (XSS) protection mechanism for applications via unspecified vectors related to the setEncoding function.
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion 8.0
4.3
CVSSv2
CVE-2007-0817
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion web server allows remote malicious users to inject arbitrary HTML or web script via the User-Agent HTTP header, which is not sanitized before being displayed in an error page.
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion 6.1
1 EDB exploit
4.6
CVSSv2
CVE-2006-3978
Unspecified vulnerability in a Verity third party library, as used on Adobe ColdFusion MX 7 through MX 7.0.2 and possibly other products, allows local users to execute arbitrary code via unknown attack vectors.
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
5
CVSSv2
CVE-2009-1876
Adobe ColdFusion 8.0.1 and previous versions might allow malicious users to obtain sensitive information via unspecified vectors, related to a "double-encoded null character vulnerability."
Adobe Coldfusion 6.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion
Adobe Coldfusion 6.1
Adobe Coldfusion 7.0
Adobe Coldfusion 7.2
Adobe Coldfusion 8.0
4.3
CVSSv2
CVE-2009-1872
Multiple cross-site scripting (XSS) vulnerabilities in Adobe ColdFusion Server 8.0.1, 8, and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the startRow parameter to administrator/logviewer/searchlog.cfm, or the query string to (2) w...
Adobe Coldfusion 7.0
Adobe Coldfusion 6.0
Adobe Coldfusion 6.1
Adobe Coldfusion 8.1
Adobe Coldfusion
Adobe Coldfusion 7.2
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0
4 EDB exploits
4.3
CVSSv2
CVE-2009-1875
Multiple cross-site scripting (XSS) vulnerabilities in Adobe ColdFusion 8.0.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2009-1877.
Adobe Coldfusion 7.0
Adobe Coldfusion 6.0
Adobe Coldfusion 6.1
Adobe Coldfusion 8.1
Adobe Coldfusion
Adobe Coldfusion 7.2
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0
4.3
CVSSv2
CVE-2009-1877
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2009-1875.
Adobe Coldfusion 6.0
Adobe Coldfusion 6.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.2
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion 8.1
Adobe Coldfusion
5.8
CVSSv2
CVE-2009-1878
Session fixation vulnerability in Adobe ColdFusion 8.0.1 and previous versions allows remote malicious users to hijack web sessions via unspecified vectors.
Adobe Coldfusion 7.2
Adobe Coldfusion 7.0
Adobe Coldfusion 6.0
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion 8.1
Adobe Coldfusion 6.1
Adobe Coldfusion
4.3
CVSSv2
CVE-2009-3467
Cross-site scripting (XSS) vulnerability in an unspecified method in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Adobe Coldfusion 8.0.1
Adobe Coldfusion
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion 4.5
Adobe Coldfusion 7.2
Adobe Coldfusion 6.1
Adobe Coldfusion 8.0
Adobe Coldfusion 6.0
Adobe Coldfusion 5.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »