Show filters
21 Total Results
Displaying 1-10 of 21
Sort by:
Attacker Value
Unknown

CVE-2012-2048

Disclosure Date: September 12, 2012 (last updated October 05, 2023)
Unspecified vulnerability in Adobe ColdFusion 10 and earlier allows attackers to cause a denial of service via unknown vectors.
0
0
Attacker Value
Unknown

CVE-2012-2041

Disclosure Date: June 13, 2012 (last updated October 04, 2023)
CRLF injection vulnerability in the Component Browser in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2012-0770

Disclosure Date: March 13, 2012 (last updated October 04, 2023)
Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
0
0
Attacker Value
Unknown

CVE-2011-4368

Disclosure Date: December 14, 2011 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Remote Development Services (RDS) in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2011-2463

Disclosure Date: December 14, 2011 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving the cfform tag.
0
0
Attacker Value
Unknown

CVE-2011-0629

Disclosure Date: June 16, 2011 (last updated October 04, 2023)
Cross-site request forgery (CSRF) vulnerability in Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
0
0
Attacker Value
Unknown

CVE-2011-2091

Disclosure Date: June 16, 2011 (last updated October 04, 2023)
Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 allows remote attackers to cause a denial of service via unknown vectors.
0
0
Attacker Value
Unknown

CVE-2011-0580

Disclosure Date: February 10, 2011 (last updated October 04, 2023)
Multiple cross-site scripting (XSS) vulnerabilities in the administrator console in Adobe ColdFusion 8.0 through 9.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
0
Attacker Value
Unknown

CVE-2011-0582

Disclosure Date: February 10, 2011 (last updated October 04, 2023)
Unspecified vulnerability in the administrator console in Adobe ColdFusion 8.0 through 9.0.1 allows attackers to obtain sensitive information via unknown vectors.
0
0
Attacker Value
Unknown

CVE-2011-0583

Disclosure Date: February 10, 2011 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via the cfform tag.
0
0
View More Topics  Next >