Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
allaire vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-1999-0800
The GetFile.cfm file in Allaire Forums allows remote malicious users to read files through a parameter to GetFile.cfm.
Allaire Forums
1 EDB exploit
7.5
CVSSv2
CVE-1999-1124
HTTP Client application in ColdFusion allows remote malicious users to bypass access restrictions for web pages on other ports by providing the target page to the mainframeset.cfm application, which requests the page from the server, making it look like the request is coming from...
Allaire Coldfusion
2.1
CVSSv2
CVE-1999-0757
The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing malicious users to decrypt the templates.
Allaire Coldfusion Server
1 EDB exploit
5
CVSSv2
CVE-2000-0051
The Allaire Spectra Configuration Wizard allows remote malicious users to cause a denial of service by repeatedly resubmitting data collections for indexing via a URL.
Allaire Spectra 1.0
7.5
CVSSv2
CVE-2000-0120
The Remote Access Service invoke.cfm template in Allaire Spectra 1.0 allows users to bypass authentication via the bAuthenticated parameter.
Allaire Spectra 1.0
2.6
CVSSv2
CVE-2000-0382
ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site.
Allaire Clustercats 1.0
6.4
CVSSv2
CVE-2000-0862
Vulnerability in an administrative interface utility for Allaire Spectra 1.0.1 allows remote malicious users to read and modify sensitive configuration information.
Allaire Spectra 1.0.1
4.6
CVSSv2
CVE-2000-0050
The Allaire Spectra Webtop allows authenticated users to access other Webtop sections by specifying explicit URLs.
Allaire Spectra 1.0
6.4
CVSSv2
CVE-2000-0297
Allaire Forums 2.0.5 allows remote malicious users to bypass access restrictions to secure conferences via the rightAccessAllForums or rightModerateAllForums variables.
Allaire Forums 2.0.5
5
CVSSv2
CVE-1999-0922
An example application in ColdFusion Server 4.0 allows remote malicious users to view source code via the sourcewindow.cfm file.
Allaire Coldfusion Server 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »