Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 7.0 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-1872
Multiple cross-site scripting (XSS) vulnerabilities in Adobe ColdFusion Server 8.0.1, 8, and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the startRow parameter to administrator/logviewer/searchlog.cfm, or the query string to (2) w...
Adobe Coldfusion 7.0
Adobe Coldfusion 6.0
Adobe Coldfusion 6.1
Adobe Coldfusion 8.1
Adobe Coldfusion
Adobe Coldfusion 7.2
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0
4 EDB exploits
4.3
CVSSv2
CVE-2009-1875
Multiple cross-site scripting (XSS) vulnerabilities in Adobe ColdFusion 8.0.1 and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2009-1877.
Adobe Coldfusion 7.0
Adobe Coldfusion 6.0
Adobe Coldfusion 6.1
Adobe Coldfusion 8.1
Adobe Coldfusion
Adobe Coldfusion 7.2
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0
4.3
CVSSv2
CVE-2009-1877
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2009-1875.
Adobe Coldfusion 6.0
Adobe Coldfusion 6.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.2
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion 8.1
Adobe Coldfusion
4.3
CVSSv2
CVE-2008-0643
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 and ColdFusion 8 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 7.0.2
Adobe Coldfusion 8.0
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
4.3
CVSSv2
CVE-2007-1278
Unspecified vulnerability in the IIS connector in Adobe JRun 4.0 Updater 6, and ColdFusion MX 6.1 and 7.0 Enterprise, when using Microsoft IIS 6, allows remote malicious users to cause a denial of service via unspecified vectors, involving the request of a file in the JRun web ro...
Adobe Coldfusion 6.1
Adobe Jrun 4.0
Adobe Coldfusion 7.0
4.3
CVSSv2
CVE-2006-5860
Cross-site scripting (XSS) vulnerability in the administrator console for Adobe JRun 4.0, as used in ColdFusion, allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Adobe Coldfusion 6.1
Adobe Coldfusion 7.0
Adobe Jrun 4.0
Adobe Jrun 4.0 Build 61650
4.3
CVSSv2
CVE-2006-5859
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 7.0 and 7.0.1, when Global Script Protection is not enabled, allows remote malicious users to inject arbitrary HTML and web script via unknown vectors, possibly related to Linkdirect.cfm, Topnav.cfm, and Welcomedoc...
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
2.6
CVSSv2
CVE-2006-6483
Adobe ColdFusion MX 7.x prior to 7.0.2 does not properly filter HTML tags when protecting against cross-site scripting (XSS) attacks, which allows remote malicious users to inject arbitrary web script or HTML via a NULL byte (%00) in certain HTML tags, as demonstrated using "...
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
2.6
CVSSv2
CVE-2006-4726
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 6.1 up to and including 7.02 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving a ColdFusion error page.
Adobe Coldfusion 6.1
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0
2.1
CVSSv2
CVE-2010-1294
Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows local users to obtain sensitive information via unknown vectors.
Adobe Coldfusion 8.0
Adobe Coldfusion 6.0
Adobe Coldfusion 5.0
Adobe Coldfusion 8.0.1
Adobe Coldfusion 6.1
Adobe Coldfusion 4.5
Adobe Coldfusion
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
Adobe Coldfusion 7.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »