Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 6.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-0735
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion prior to 9.0.1 CHF1 allows remote malicious users to inject arbitrary web script or HTML via vectors involving a "tag script."
Adobe Coldfusion 9.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion 5.0
Adobe Coldfusion 4.5
Adobe Coldfusion
Adobe Coldfusion 8.0.1
Adobe Coldfusion 6.1
Adobe Coldfusion 6.0
Adobe Coldfusion 9.0
Adobe Coldfusion 8.1
NA
CVE-2011-0737
Adobe ColdFusion 9.0.1 CHF1 and previous versions allows remote malicious users to obtain sensitive information via an id=- query to a .cfm file, which reveals the installation path in an error message. NOTE: the vendor disputes the significance of this issue because the Site-wid...
Adobe Coldfusion 7.0.2
Adobe Coldfusion 8.0
Adobe Coldfusion 9.0
Adobe Coldfusion 6.0
Adobe Coldfusion 7.0
Adobe Coldfusion 5.0
Adobe Coldfusion 6.1
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0.1
Adobe Coldfusion
Adobe Coldfusion 8.1
Adobe Coldfusion 9.0.1
Adobe Coldfusion 4.5
NA
CVE-2005-4342
ColdFusion Sandbox on Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 does not throw an exception if the SecurityManager is disabled, which might allow remote malicious users to "bypass security controls," aka "JRun Clustered Sandbox Secu...
Macromedia Coldfusion 7.0
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
NA
CVE-2005-4343
Adobe (formerly Macromedia) ColdFusion MX 6.0, 6.1, 6.1 with JRun, and 7.0 allows remote malicious users to attach arbitrary files and send mail via a crafted Subject field, which is not properly handled by the CFMAIL tag in applications that use ColdFusion, aka "CFMAIL inje...
Macromedia Coldfusion 6.1
Macromedia Coldfusion 6.0
Macromedia Coldfusion 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2