Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adobe coldfusion 2018 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2020-3796
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an improper access control vulnerability. Successful exploitation could lead to system file structure disclosure.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
6.5
CVSSv3
CVE-2020-3767
ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an insufficient input validation vulnerability. Successful exploitation could lead to application-level denial-of-service (dos).
Adobe Coldfusion 2016
Adobe Coldfusion 2018
9.8
CVSSv3
CVE-2019-8073
ColdFusion 2018- update 4 and previous versions and ColdFusion 2016- update 11 and previous versions have a Command Injection via Vulnerable component vulnerability. Successful exploitation could lead to Arbitrary code execution in the context of the current user.
Adobe Coldfusion 2016
Adobe Coldfusion 2018
1 Article
9.8
CVSSv3
CVE-2019-8256
ColdFusion versions Update 6 and previous versions have an insecure inherited permissions of default installation directory vulnerability. Successful exploitation could lead to privilege escalation.
Adobe Coldfusion 2018
1 Article
7.8
CVSSv3
CVE-2018-4938
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Insecure Library Loading vulnerability. Successful exploitation could lead to local privilege escalation.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
9.8
CVSSv3
CVE-2018-4939
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Deserialization of Untrusted Data vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
1 Github repository
6.1
CVSSv3
CVE-2018-4940
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
6.1
CVSSv3
CVE-2018-4941
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
7.5
CVSSv3
CVE-2018-4942
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6