Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
allaire coldfusion server vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-1999-0455
The Expression Evaluator sample application in ColdFusion allows remote malicious users to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
Allaire Coldfusion Server 4.0
1 EDB exploit
7.5
CVSSv2
CVE-1999-0923
Sample runnable code snippets in ColdFusion Server 4.0 allow remote malicious users to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls.
Allaire Coldfusion Server 4.0
5
CVSSv2
CVE-1999-0924
The Syntax Checker in ColdFusion Server 4.0 allows remote malicious users to conduct a denial of service.
Allaire Coldfusion Server 4.0
5
CVSSv2
CVE-1999-0922
An example application in ColdFusion Server 4.0 allows remote malicious users to view source code via the sourcewindow.cfm file.
Allaire Coldfusion Server 4.0
7.5
CVSSv2
CVE-1999-1124
HTTP Client application in ColdFusion allows remote malicious users to bypass access restrictions for web pages on other ports by providing the target page to the mainframeset.cfm application, which requests the page from the server, making it look like the request is coming from...
Allaire Coldfusion
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2