Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2011-0584
Session fixation vulnerability in Adobe ColdFusion 8.0 up to and including 9.0.1 allows remote malicious users to hijack web sessions via unspecified vectors.
Adobe Coldfusion 8.0
Adobe Coldfusion 8.0.1
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
383
VMScore
CVE-2011-2463
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0 up to and including 9.0.1 allows remote malicious users to inject arbitrary web script or HTML via vectors involving the cfform tag.
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion 8.0.1
445
VMScore
CVE-2012-0770
Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote malicious users to cause a denial of service (CPU consumption) by sending many crafted parameters.
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion 8.0.1
668
VMScore
CVE-2013-1388
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 10, 9.0.1 before Update 9, 9.0.2 before Update 4, and 10 before Update 9 allows malicious users to obtain administrator-console access via unknown vectors.
Adobe Coldfusion 9.0
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0.2
Adobe Coldfusion 9.0.1
890
VMScore
CVE-2013-1389
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 11, 9.0.1 before Update 10, 9.0.2 before Update 5, and 10 before Update 10 allows remote malicious users to execute arbitrary code via unknown vectors.
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.2
392
VMScore
CVE-2012-5675
Adobe ColdFusion 9.0 up to and including 9.0.2, and 10, allows local users to bypass intended shared-hosting sandbox permissions via unspecified vectors.
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
Adobe Coldfusion 10.0
Adobe Coldfusion 9.0
383
VMScore
CVE-2011-4368
Cross-site scripting (XSS) vulnerability in Remote Development Services (RDS) in Adobe ColdFusion 8.0 up to and including 9.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 8.0.1
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 8.0
383
VMScore
CVE-2008-0643
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 and ColdFusion 8 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 7.0.2
Adobe Coldfusion 8.0
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
605
VMScore
CVE-2011-0629
Cross-site request forgery (CSRF) vulnerability in Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion 8.0.1
383
VMScore
CVE-2011-0580
Multiple cross-site scripting (XSS) vulnerabilities in the administrator console in Adobe ColdFusion 8.0 up to and including 9.0.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 8.0
Adobe Coldfusion 8.0.1
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »