Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 9.0.1 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2010-5290
The authentication process in Adobe ColdFusion prior to 10 does not require knowledge of the cleartext password if the password hash is known, which makes it easier for context-dependent malicious users to obtain administrative privileges by leveraging read access to the configur...
Adobe Coldfusion 9.0
Adobe Coldfusion
Adobe Coldfusion 9.0.1
3.5
CVSSv2
CVE-2013-5326
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 9.0 before Update 12, 9.0.1 before Update 11, 9.0.2 before Update 6, and 10 before Update 12, when the CFIDE directory is available, allows remote authenticated users to inject arbitrary web script or HTML via unspecifi...
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
Adobe Coldfusion
5
CVSSv2
CVE-2013-3349
Unspecified vulnerability in Adobe ColdFusion 9.0 up to and including 9.0.2, when the JRun application server is used, allows remote malicious users to cause a denial of service via unknown vectors.
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
5
CVSSv2
CVE-2013-0631
Adobe ColdFusion 9.0, 9.0.1, and 9.0.2 allows malicious users to obtain sensitive information via unspecified vectors, as exploited in the wild in January 2013.
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
10
CVSSv2
CVE-2013-0632
administrator.cfc in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote malicious users to bypass authentication and possibly execute arbitrary code by logging in to the RDS component using the default empty password and leveraging this session to access the administrative ...
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
Adobe Coldfusion 10.0
3 EDB exploits
3 Github repositories
5
CVSSv2
CVE-2011-2091
Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 allows remote malicious users to cause a denial of service via unknown vectors.
Adobe Coldfusion 8.0.1
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 8.0
7.5
CVSSv2
CVE-2013-1387
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 10, 9.0.1 before Update 9, 9.0.2 before Update 4, and 10 before Update 9 allows malicious users to impersonate users via unknown vectors.
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
7.5
CVSSv2
CVE-2013-1388
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 10, 9.0.1 before Update 9, 9.0.2 before Update 4, and 10 before Update 9 allows malicious users to obtain administrator-console access via unknown vectors.
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0.1
5
CVSSv2
CVE-2013-3336
Unspecified vulnerability in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote malicious users to read arbitrary files via unknown vectors.
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
1 EDB exploit
1 Article
4.4
CVSSv2
CVE-2012-5675
Adobe ColdFusion 9.0 up to and including 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »