Show filters
54 Total Results
Displaying 41-50 of 54
Sort by:
Attacker Value
Unknown

CVE-2019-7838

Disclosure Date: June 12, 2019 (last updated November 27, 2024)
ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a file extension blacklist bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
0
0
Attacker Value
Unknown

CVE-2019-7839

Disclosure Date: June 12, 2019 (last updated November 27, 2024)
ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.
0
0
Attacker Value
Unknown

CVE-2019-7092

Disclosure Date: May 24, 2019 (last updated November 27, 2024)
ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a cross site scripting vulnerability. Successful exploitation could lead to information disclosure .
0
0
Attacker Value
Unknown

CVE-2019-7091

Disclosure Date: May 24, 2019 (last updated November 27, 2024)
ColdFusion versions Update 1 and earlier, Update 7 and earlier, and Update 15 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.
0
0
Attacker Value
Unknown

CVE-2019-7816

Disclosure Date: May 24, 2019 (last updated November 27, 2024)
ColdFusion versions Update 2 and earlier, Update 9 and earlier, and Update 17 and earlier have a file upload restriction bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
0
0
Attacker Value
Unknown

CVE-2018-15961

Disclosure Date: September 25, 2018 (last updated July 26, 2024)
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2018-15965

Disclosure Date: September 25, 2018 (last updated November 27, 2024)
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.
0
0
Attacker Value
Unknown

CVE-2018-15963

Disclosure Date: September 25, 2018 (last updated November 27, 2024)
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a security bypass vulnerability. Successful exploitation could lead to arbitrary folder creation.
0
0
Attacker Value
Unknown

CVE-2018-15964

Disclosure Date: September 25, 2018 (last updated November 27, 2024)
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a use of a component with a known vulnerability vulnerability. Successful exploitation could lead to information disclosure.
0
0
Attacker Value
Unknown

CVE-2018-15957

Disclosure Date: September 25, 2018 (last updated November 27, 2024)
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.
0
0
View More Topics  < Previous  Next >