Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coldfusion server vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2000-0410
ColdFusion Server 4.5.1 allows remote malicious users to cause a denial of service by making repeated requests to a CFCACHE tagged cache file that is not stored in memory.
Allaire Coldfusion Server 4.5.1
755
VMScore
CVE-1999-0455
The Expression Evaluator sample application in ColdFusion allows remote malicious users to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
Allaire Coldfusion Server 4.0
1 EDB exploit
668
VMScore
CVE-1999-0923
Sample runnable code snippets in ColdFusion Server 4.0 allow remote malicious users to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls.
Allaire Coldfusion Server 4.0
445
VMScore
CVE-1999-0924
The Syntax Checker in ColdFusion Server 4.0 allows remote malicious users to conduct a denial of service.
Allaire Coldfusion Server 4.0
445
VMScore
CVE-1999-0922
An example application in ColdFusion Server 4.0 allows remote malicious users to view source code via the sourcewindow.cfm file.
Allaire Coldfusion Server 4.0
668
VMScore
CVE-2001-0535
Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote malicious users to conduct upload, read, or execute files by spoofing the "HTTP Host" (CGI.Host) variable i...
Macromedia Coldfusion Server 4.x
668
VMScore
CVE-2001-1427
Unknown vulnerability in ColdFusion Server 2.0 up to and including 4.5.1 SP2 allows remote malicious users to overwrite templates with zero byte files via unknown attack vectors.
Macromedia Coldfusion 4.0
Macromedia Coldfusion 4.0.1
Macromedia Coldfusion 3.0.1
Macromedia Coldfusion 3.1
Macromedia Coldfusion 4.5.1
Macromedia Coldfusion 2.0
Macromedia Coldfusion 3.0
Macromedia Coldfusion 4.5
Macromedia Coldfusion 3.1.1
Macromedia Coldfusion 3.1.2
782
VMScore
CVE-2010-2861
Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and previous versions allow remote malicious users to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) ...
Adobe Coldfusion 9.0
Adobe Coldfusion 8.0.1
Adobe Coldfusion 8.0
Adobe Coldfusion
2 EDB exploits
1 Nmap script
24 Github repositories
1 Article
445
VMScore
CVE-2004-1815
Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote malicious users to cause a denial of service (memory consumption).
Sun One Application Server 7.0
Macromedia Coldfusion 6.0
Macromedia Coldfusion 6.1
Macromedia Jrun 4.0
Macromedia Jrun 4.0 Build 61650
445
VMScore
CVE-2013-3349
Unspecified vulnerability in Adobe ColdFusion 9.0 up to and including 9.0.2, when the JRun application server is used, allows remote malicious users to cause a denial of service via unknown vectors.
Adobe Coldfusion 9.0
Adobe Coldfusion 9.0.1
Adobe Coldfusion 9.0.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »