Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 9.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-0570
Cross-site request forgery (CSRF) vulnerability in Adobe ColdFusion 9.0 before Update 13, 9.0.1 before Update 12, 9.0.2 before Update 7, 10 before Update 14, and 11 before Update 2 allows remote malicious users to hijack the authentication of unspecified victims via unknown vecto...
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
Adobe Coldfusion 11.0
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
NA
CVE-2014-0571
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 9.0 before Update 13, 9.0.1 before Update 12, 9.0.2 before Update 7, 10 before Update 14, and 11 before Update 2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
Adobe Coldfusion 11.0
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
NA
CVE-2014-0572
Adobe ColdFusion 9.0 before Update 13, 9.0.1 before Update 12, 9.0.2 before Update 7, 10 before Update 14, and 11 before Update 2 allows local users to bypass intended IP-based access restrictions via unspecified vectors.
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
Adobe Coldfusion 11.0
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
NA
CVE-2014-5315
Cross-site scripting (XSS) vulnerability in the Help page in Adobe Acrobat 9.5.2 and previous versions and ColdFusion 8.0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 8.0
Adobe Coldfusion
Adobe Acrobat 9.5.1
Adobe Acrobat 9.3.3
Adobe Acrobat 9.4.2
Adobe Acrobat 9.2
Adobe Acrobat 9.5
Adobe Acrobat 9.1
Adobe Acrobat 9.4.3
Adobe Acrobat 9.4.4
Adobe Acrobat 9.0
Adobe Acrobat 9.3.4
Adobe Acrobat 9.4.1
Adobe Acrobat 9.3.2
Adobe Acrobat 9.4.6
Adobe Acrobat 9.1.1
Adobe Acrobat
Adobe Acrobat 9.3.1
Adobe Acrobat 9.4.7
Adobe Acrobat 9.1.2
Adobe Acrobat 9.1.3
Adobe Acrobat 9.4.5
NA
CVE-2013-5326
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 9.0 before Update 12, 9.0.1 before Update 11, 9.0.2 before Update 6, and 10 before Update 12, when the CFIDE directory is available, allows remote authenticated users to inject arbitrary web script or HTML via unspecifi...
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 10.0
Adobe Coldfusion
NA
CVE-2010-5290
The authentication process in Adobe ColdFusion prior to 10 does not require knowledge of the cleartext password if the password hash is known, which makes it easier for context-dependent malicious users to obtain administrative privileges by leveraging read access to the configur...
Adobe Coldfusion 9.0
Adobe Coldfusion
Adobe Coldfusion 9.0.1
NA
CVE-2013-3349
Unspecified vulnerability in Adobe ColdFusion 9.0 up to and including 9.0.2, when the JRun application server is used, allows remote malicious users to cause a denial of service via unknown vectors.
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
NA
CVE-2013-1389
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 11, 9.0.1 before Update 10, 9.0.2 before Update 5, and 10 before Update 10 allows remote malicious users to execute arbitrary code via unknown vectors.
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
NA
CVE-2013-3336
Unspecified vulnerability in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote malicious users to read arbitrary files via unknown vectors.
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0.1
1 EDB exploit
1 Article
NA
CVE-2013-1387
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 10, 9.0.1 before Update 9, 9.0.2 before Update 4, and 10 before Update 9 allows malicious users to impersonate users via unknown vectors.
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29824
CVE-2024-30095
CVE-2024-30104
client side
CVE-2024-5840
CVE-2024-34405
unprivileged
wireless
CVE-2024-4577
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »