Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coldfusion vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-26347
Adobe ColdFusion versions 2023.5 (and previous versions) and 2021.11 (and previous versions) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An unauthenticated attacker could leverage this vulnerability to access the admini...
Adobe Coldfusion 2021
Adobe Coldfusion 2023
Adobe Coldfusion
7.5
CVSSv3
CVE-2023-29298
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerabi...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
9.8
CVSSv3
CVE-2023-29300
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by a Deserialization of Untrusted Data vulnerability that could result in Arbitrary code execution. Exploitation of this issue does n...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
3 Github repositories
7.5
CVSSv3
CVE-2023-29301
Adobe ColdFusion versions 2018u16 (and previous versions), 2021u6 (and previous versions) and 2023.0.0.330468 (and previous versions) are affected by an Improper Restriction of Excessive Authentication Attempts vulnerability that could result in a Security feature bypass. An atta...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
7.4
CVSSv3
CVE-2021-40698
ColdFusion version 2021 update 1 (and previous versions) and versions 2018.10 (and previous versions) are impacted by an Use of Inherently Dangerous Function vulnerability that can lead to a security feature bypass??. An authenticated attacker could leverage this vulnerability to...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
7.4
CVSSv3
CVE-2021-40699
ColdFusion version 2021 update 1 (and previous versions) and versions 2018.10 (and previous versions) are impacted by an improper access control vulnerability when checking permissions in the CFIDE path. An authenticated attacker could leverage this vulnerability to access and ma...
Adobe Coldfusion 2018
Adobe Coldfusion 2021
Adobe Coldfusion
6.1
CVSSv3
CVE-2016-1113
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adobe Coldfusion 10.0
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
5.9
CVSSv3
CVE-2016-1115
Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 mishandles wildcards in name fields of X.509 certificates, which might allow man-in-the-middle malicious users to spoof servers via a crafted certificate.
Adobe Coldfusion 10.0
Adobe Coldfusion 11.0
Adobe Coldfusion 2016
NA
CVE-2006-3978
Unspecified vulnerability in a Verity third party library, as used on Adobe ColdFusion MX 7 through MX 7.0.2 and possibly other products, allows local users to execute arbitrary code via unknown attack vectors.
Adobe Coldfusion 7.0
Adobe Coldfusion 7.0.1
Adobe Coldfusion 7.0.2
NA
CVE-2008-4831
Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via unknown vectors.
Adobe Coldfusion 8.0
Adobe Coldfusion 8.0.1
Adobe Coldfusion 7.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »