Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 2018 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-29300
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by a Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does n...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
3 Github repositories
7.5
CVSSv3
CVE-2023-29301
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by an Improper Restriction of Excessive Authentication Attempts vulnerability that could result in a Security feature bypass. An atta...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
6.1
CVSSv3
CVE-2022-28818
ColdFusion versions CF2021U3 (and previous versions) and CF2018U13 are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within t...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
7.4
CVSSv3
CVE-2021-40699
ColdFusion version 2021 update 1 (and previous versions) and versions 2018.10 (and previous versions) are impacted by an improper access control vulnerability when checking permissions in the CFIDE path. An authenticated attacker could leverage this vulnerability to access and ma...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
7.5
CVSSv3
CVE-2023-29298
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerabi...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
7.4
CVSSv3
CVE-2021-40698
ColdFusion version 2021 update 1 (and previous versions) and versions 2018.10 (and previous versions) are impacted by an Use of Inherently Dangerous Function vulnerability that can lead to a security feature bypass??. An authenticated attacker could leverage this vulnerability to...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
5.4
CVSSv3
CVE-2021-21087
Adobe Coldfusion versions 2016 (update 16 and previous versions), 2018 (update 10 and previous versions) and 2021.0.0.323925 are affected by an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. An attacker could abuse th...
Adobe Coldfusion 2018
Adobe Coldfusion 2016
Adobe Coldfusion 2021.0.0.323925
9.8
CVSSv3
CVE-2019-7838
ColdFusion versions Update 3 and previous versions, Update 10 and previous versions, and Update 18 and previous versions have a file extension blacklist bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
Adobe Coldfusion 2018
1 Article
7.8
CVSSv3
CVE-2020-10145
The Adobe ColdFusion installer fails to set a secure access-control list (ACL) on the default installation directory, such as C:\ColdFusion2021\. By default, unprivileged users can create files in this directory structure, which creates a privilege-escalation vulnerability.
Adobe Coldfusion 2018
Adobe Coldfusion 2016
Adobe Coldfusion 2021
9.8
CVSSv3
CVE-2018-15958
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and previous versions, and Update 14 and previous versions have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Coldfusion 11.0
Adobe Coldfusion 2018
Adobe Coldfusion 2016
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »