Adobe ColdFusion versions 7 and below suffer from cross site scripting and path disclosure vulnerabilities.
2ccd4259b49d3c5a585be5893ffc080df3ab2abf68b634f4feb4cf7bb5aaa8f4Adobe ColdFusion suffers from multiple cross site scripting and information disclosure vulnerabilities in the administration console.
d873c49e2d5b51031c48ef05bac08618d85d900ad26132a94d2342aa6e42ee80Secunia Security Advisory - Some vulnerabilities have been reported in Adobe ColdFusion, which can be exploited by malicious people to disclose certain information, conduct cross-site scripting, HTTP header injection, and session fixation attacks.
2ffb345772e0fcd4abe3bbce379138ab0d2e0e7a921f329f9c1d3043dd5de1f9Adobe ColdFusion suffers from cross site scripting and disclosure vulnerabilities.
7c7ad4468042f3270eec5cd9989f3673a89812a25841b893851bef7513bdfbdaLomtec ActiveWeb Professional 3.0 CMS allows for arbitrary file upload and execution as SYSTEM in ColdFusion.
78494c3386ff463a2ce2a536380cd254dc574d5098b1fb4f4bc4d3c6534f5261This Metasploit module exploits the Adobe ColdFusion 8.0.1 FCKeditor 'CurrentFolder' File Upload and Execute vulnerability.
ed8d1ef04d8a010a5d9547040860e7779a809135357782fe9bb61bda538a7295Proof of concept code that demonstrates the directory traversal vulnerability in Adobe ColdFusion.
43a65b1faaaafe5a54c3c852dafbcac5359c61b1c91fa19f9753a464f80ddc3bThe Adobe Coldfusion administration console suffers from a traversal vulnerability that allows for unauthenticated file retrieval.
59cbe441b1cfdd493b736961317513e747a4567e06054074f35b525e6cd63aedSecunia Security Advisory - Richard Brain has reported a vulnerability in Adobe ColdFusion, which can be exploited by malicious people to disclose sensitive information.
d0f1f05574d7d8511e327057a1c700f725fa44c122e4e0c87db14fd0c30eee66Secunia Security Advisory - Some vulnerabilities have been reported in Adobe ColdFusion, which can be exploited by malicious, local users to disclose sensitive information and by malicious people to conduct cross-site scripting attacks.
a24e753247b4d38ea21a686c7eec281f807e6be3390920639a30ee1015940843Secunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious people to disclose sensitive information.
23b882c80b26025a4bf8193800f9767d394bfca85e508d5b6c7fc6381076516bSecunia Security Advisory - Some vulnerabilities have been reported in Adobe ColdFusion and JRun, which can be exploited by malicious people to conduct cross-site scripting attacks, disclose sensitive information, or potentially compromise a vulnerable system, and by malicious users to bypass certain security restrictions or disclose sensitive information.
ddee35243f87906d46a2467213f8bcd55c01edfb5d048b6aec1e564e466f5ce1Adobe Coldfusion 8 suffers from cross site scripting and cross site request forgery vulnerabilities.
49f9ee669e1a069a54b29ec05332edca7f85faad63df7b07cebcd25f400c8e50Secunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious people to disclose sensitive information and compromise a vulnerable system.
179c81d68c79b61c6e7e9a3246bd23e4c3e61a9a0c79c377c257917daf6ecc55ColdFusion Scripts Red_Reservations suffers from a remote database disclosure vulnerability.
cfbda6db9af67a8919307817939d5e612f8b25c63831e0e0e9e4d35d3e88bb18Secunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious, local users to bypass certain security restrictions.
bbc03a99d46b6dbe67912ae751f5d735053000f2f194a6b58eb23e74fcd5bce8Secunia Security Advisory - A security issue has been reported in Adobe ColdFusion 8, which can be exploited by malicious people to bypass certain security restrictions.
53199815af22616b2067bfeea6e99b942337877b40f26310fefa354c43e405e0Secunia Security Advisory - Some vulnerabilities and a weakness have been reported in Adobe ColdFusion, which can be exploited by malicious people to bypass certain security restrictions and to conduct cross-site scripting attacks.
e666a3826ac10939f3e4e7ec21ae4ff30279b68fc00065fcf6f08e95df525a2aSecunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which potentially can be exploited by malicious people to hijack user sessions.
65cf863e9ab065e8e802e72be586ef585e0452eca4322303ba8cb114344578fdSecunia Security Advisory - A security issue has been reported in Adobe ColdFusion MX, which can be exploited by malicious, local users to gain escalated privileges.
627ed09fd7e7cd62450343a895f17f940f7ee6714373cdde12e3a502f9684af6Secunia Security Advisory - Two vulnerabilities have been reported in Adobe ColdFusion MX, which can be exploited by malicious people to conduct cross-site scripting attacks.
1978f457866c2a7178b56fc767961f64ff651f25b68613e30a504c4f253564b5iDefense Security Advisory - Remote exploitation of an input validation vulnerability in Adobe Systems Inc.'s Macromedia ColdFusion MX 7 may allow an attacker to view file contents on the server. The vulnerability specifically exists in that URL encoded filenames will be decoded by the IIS process and then again by the ColdFusion process. By supplying a URL containing a double encoded null byte and an extension handled by ColdFusion, such as '.cfm', it is possible to view the contents of any file which is not interpreted by ColdFusion. iDefense has confirmed this vulnerability exists in Adobe Macromedia ColdFusion MX 7.0.2, with all available fixes, running on Microsoft IIS vulnerable.
4eb93328aca8b7d23af5ba4e80ae002d8aabb5f92bb543f0ae7df03430243dd3Secunia Security Advisory - Inge Henriksen has reported a vulnerability in Adobe ColdFusion MX, which can be exploited by malicious people to disclose potentially sensitive information.
5ac58c89213c94a43d0471bc9dda749ae29dbb14585a4642ded7e87db1904fe9ColdFusion MX7 suffers from path disclosure, internal IP address disclosure, and cross site scripting vulnerabilities.
55f86e7929a884f0b6dd3f764aaf710b98410a62ad57cf00d38bfc635592b514Secunia Security Advisory - A vulnerability has been reported in Adobe ColdFusion, which can be exploited by malicious, local users to gain escalated privileges.
0ce68c18b1e80741d56cf485f50359ac594f6999a45ea8eb41f2f3a56dfa5927Secunia Security Advisory - Two vulnerabilities have been reported in ColdFusion, which can be exploited by malicious, local users to bypass certain security restrictions and by malicious people to cause a DoS (Denial of Service).
bce0081e83f22a96f8cc04689f3c5ee21f7726c4b3f158cfb45dcf08e99aa8ce
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Subscribe to an RSS Feed