Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coldfusion vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2018-15963
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and previous versions, and Update 14 and previous versions have a security bypass vulnerability. Successful exploitation could lead to arbitrary folder creation.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
Adobe Coldfusion 2018
6.4
CVSSv2
CVE-2018-15960
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and previous versions, and Update 14 and previous versions have a use of a component with a known vulnerability vulnerability. Successful exploitation could lead to arbitrary file overwrite.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
Adobe Coldfusion 2018
10
CVSSv2
CVE-2018-15965
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and previous versions, and Update 14 and previous versions have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Coldfusion 2016
Adobe Coldfusion 11.0
Adobe Coldfusion 2018
10
CVSSv2
CVE-2018-4939
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Deserialization of Untrusted Data vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
1 Github repository
4.3
CVSSv2
CVE-2018-4941
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
4.6
CVSSv2
CVE-2018-4938
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Insecure Library Loading vulnerability. Successful exploitation could lead to local privilege escalation.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
4.3
CVSSv2
CVE-2018-4940
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
5
CVSSv2
CVE-2018-4942
Adobe ColdFusion Update 5 and previous versions versions, ColdFusion 11 Update 13 and previous versions versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
6.5
CVSSv2
CVE-2018-7486
Blue River Mura CMS before v7.0.7029 supports inline function calls with an [m] tag and [/m] end tag, without proper restrictions on file types or pathnames, which allows remote malicious users to execute arbitrary code via an [m]$.dspinclude("../pathname/executable.jpeg&quo...
Blueriver Muracms
7.5
CVSSv2
CVE-2017-11283
Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and previous versions versions for ColdFusion 2016, and Update 12 and previous versions versions for ColdFusion 11.
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »