Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
macromedia vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2000-0540
JSP sample files in Allaire JRun 2.3.x allow remote malicious users to access arbitrary files (e.g. via viewsource.jsp) or obtain configuration information.
Macromedia Jrun 2.3
5.8
CVSSv2
CVE-2006-2364
Cross-site scripting (XSS) vulnerability in the validation feature in Macromedia ColdFusion 5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a "_required" field when the associated normal field is missing or empty, which i...
Macromedia Coldfusion 5.0
6.4
CVSSv2
CVE-2000-0539
Servlet examples in Allaire JRun 2.3.x allow remote malicious users to obtain sensitive information, e.g. listing HttpSession ID's via the SessionServlet servlet.
Macromedia Jrun 2.3
4.3
CVSSv2
CVE-2006-6885
An ActiveX control in SwDir.dll in Macromedia Shockwave 10 allows remote malicious users to cause a denial of service (Internet Explorer 7 crash) via a long string in the swURL attribute.
Macromedia Shockwave 10
1 EDB exploit
6.4
CVSSv2
CVE-2001-1512
Unknown vulnerability in Allaire JRun 3.1 allows remote malicious users to directly access the WEB-INF and META-INF directories and execute arbitrary JavaServer Pages (JSP), a variant of CVE-2000-1050.
Macromedia Jrun 3.1
5
CVSSv2
CVE-2004-2330
ColdFusion MX 6.1 and 6.1 J2EE allows remote malicious users to cause a denial of service via an HTTP request containing a large number of form fields.
Macromedia Coldfusion 6.1
2.1
CVSSv2
CVE-2004-2331
ColdFusion MX 6.1 and 6.1 J2EE allows local users to bypass sandbox security restrictions and obtain sensitive information by using Java reflection methods to access trusted Java objects without using the CreateObject function or cfobject tag.
Macromedia Coldfusion 6.1
7.5
CVSSv2
CVE-2007-1403
Multiple stack-based buffer overflows in an ActiveX control in SwDir.dll 10.1.4.20 in Macromedia Shockwave allow remote malicious users to cause a denial of service (Internet Explorer 7 crash) and possibly execute arbitrary code via a long (1) BGCOLOR, (2) SRC, (3) AutoStart, (4)...
Macromedia Shockwave 10.1.4.20
1 EDB exploit
5
CVSSv2
CVE-2002-0476
Standalone Macromedia Flash Player 5.0 allows remote malicious users to save arbitrary files and programs via a .SWF file containing the undocumented "save" FSCommand.
Macromedia Flash Player 5.0
7.5
CVSSv2
CVE-2002-0477
Standalone Macromedia Flash Player 5.0 prior to 5,0,30,2 allows remote malicious users to execute arbitrary programs via a .SWF file containing the "exec" FSCommand.
Macromedia Flash Player 5.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »