Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
macromedia vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2001-1510
Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote malicious users to read arbitrary files and directories by appending (1) "%3f.jsp", (2) "?.jsp" or (3) "?"...
Macromedia Jrun 2.3.3
Macromedia Jrun 3.1
Macromedia Jrun 3.0
NA
CVE-2001-1544
Directory traversal vulnerability in Macromedia JRun Web Server (JWS) 2.3.3, 3.0 and 3.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the HTTP GET request.
Macromedia Jrun 3.1
Macromedia Jrun 3.0
Macromedia Jrun 2.3.3
NA
CVE-2001-0926
SSIFilter in Allaire JRun 3.1, 3.0 and 2.3.3 allows remote malicious users to obtain source code for Java server pages (.jsp) and other files in the web root via an HTTP request for a non-existent SSI page, in which the request's body has an #include statement.
Macromedia Jrun 2.3.3
Macromedia Jrun 3.0
Macromedia Jrun 3.1
NA
CVE-2002-1534
Macromedia Flash Player allows remote malicious users to read arbitrary files via XML script in a .swf file that is hosted on a remote SMB share.
Macromedia Flash Player 6.0
Macromedia Flash Player 6.0.29.0
Macromedia Flash Player 6.0.40.0
Macromedia Flash Player 6.0.47.0
NA
CVE-2006-6827
Flash8b.ocx in Macromedia Flash 8 allows remote malicious users to cause a denial of service (Internet Explorer 7 crash) via a long string in the Flash8b.AllowScriptAccess method.
Macromedia Flash Player 8.0.33.0
Macromedia Flash Player 8.0
Macromedia Flash Player 8.0.22.0
Macromedia Flash Player 8.0.24.0
1 EDB exploit
NA
CVE-2004-1815
Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote malicious users to cause a denial of service (memory consumption).
Sun One Application Server 7.0
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
NA
CVE-2002-1992
Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote malicious users to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header.
Macromedia Coldfusion
Macromedia Coldfusion Professional
NA
CVE-2004-2505
Macromedia ColdFusion MX prior to 6.1 does not restrict the size of error messages, which allows remote malicious users to cause a denial of service (memory consumption and crash) by sending repeated GET or POST requests that trigger error messages that use long strings of data.
Macromedia Coldfusion 5.0
Macromedia Coldfusion 6.0
1 EDB exploit
NA
CVE-2001-1084
Cross-site scripting vulnerability in Allaire JRun 3.0 and 2.3.3 allows a malicious webmaster to embed Javascript in a request for a .JSP, .shtml, .jsp10, .jrun, or .thtml file that does not exist, which causes the Javascript to be inserted into an error message.
Macromedia Jrun 3.0
Macromedia Jrun 2.3.3
NA
CVE-2004-2204
Macromedia ColdFusion MX 6.0 and 6.1 application server, when running with the CreateObject function or CFOBJECT tag enabled, allows local users to conduct unauthorized activities and obtain administrative passwords by creating CFML scripts that use CreateObject or CFOBJECT.
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »