Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: coldfusion Clear
ID Title
CVE-2026-48315 Vulnerability in adobe (CVE-2026-48315)
vulnerability in adobe (CVE-2026-48315). Confidential information can be exposed externally.
CVE-2026-48314 Path Traversal in path-traversal (CVE-2026-48314)
path traversal in path-traversal (CVE-2026-48314). Risk of unauthorized operations or information disclosure.
CVE-2026-48283 Unrestricted File Upload in adobe (CVE-2026-48283)
vulnerability in adobe (CVE-2026-48283). Successful exploitation can lead to full system takeover.
CVE-2026-48313 Path Traversal in path-traversal (CVE-2026-48313)
path traversal in path-traversal (CVE-2026-48313). Confidential information can be exposed externally.
CVE-2026-48282 KEV [KEV] Path Traversal in Adobe path-traversal (CVE-2026-48282)
path traversal in Adobe path-traversal (CVE-2026-48282). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-48285 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-48285)
SSRF in ssrf (CVE-2026-48285). Confidential information can be exposed externally.
CVE-2026-48307 Cross-Site Scripting (XSS) in adobe (CVE-2026-48307)
cross-site scripting in adobe (CVE-2026-48307). Successful exploitation can lead to full system takeover.
CVE-2026-48277 Vulnerability in adobe (CVE-2026-48277)
vulnerability in adobe (CVE-2026-48277). Successful exploitation can lead to full system takeover.
CVE-2026-48281 Vulnerability in adobe (CVE-2026-48281)
vulnerability in adobe (CVE-2026-48281). Successful exploitation can lead to full system takeover.
CVE-2026-48276 Unrestricted File Upload in adobe (CVE-2026-48276)
vulnerability in adobe (CVE-2026-48276). Successful exploitation can lead to full system takeover.
CVE-2026-47960 XXE (XML External Entity) in adobe (CVE-2026-47960)
vulnerability in adobe (CVE-2026-47960). Confidential information can be exposed externally.
CVE-2026-47932 Path Traversal in path-traversal (CVE-2026-47932)
path traversal in path-traversal (CVE-2026-47932). Successful exploitation can lead to full system takeover.
CVE-2026-47933 Cross-Site Scripting (XSS) in adobe (CVE-2026-47933)
cross-site scripting in adobe (CVE-2026-47933). Risk of unauthorized operations or information disclosure.
CVE-2026-47930 Vulnerability in adobe (CVE-2026-47930)
vulnerability in adobe (CVE-2026-47930). Confidential information can be exposed externally.
CVE-2026-47929 Authorization Flaw in adobe (CVE-2026-47929)
vulnerability in adobe (CVE-2026-47929). Successful exploitation can lead to full system takeover.
CVE-2026-47931 Vulnerability in adobe (CVE-2026-47931)
vulnerability in adobe (CVE-2026-47931). Successful exploitation can lead to full system takeover.
CVE-2026-47928 Vulnerability in adobe (CVE-2026-47928)
vulnerability in adobe (CVE-2026-47928). Successful exploitation can lead to full system takeover.
CVE-2025-61821 XXE (XML External Entity) in adobe (CVE-2025-61821)
vulnerability in adobe (CVE-2025-61821). Confidential information can be exposed externally.
CVE-2025-64898 Vulnerability in adobe (CVE-2025-64898)
vulnerability in adobe (CVE-2025-64898). Risk of unauthorized operations or information disclosure.
CVE-2025-61813 XXE (XML External Entity) in adobe (CVE-2025-61813)
vulnerability in adobe (CVE-2025-61813). Confidential information can be exposed externally.
CVE-2017-3066 KEV [KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2017-3066)
vulnerability in Adobe coldfusion (CVE-2017-3066). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-20767 KEV [KEV] Vulnerability in Adobe coldfusion (CVE-2024-20767)
vulnerability in Adobe coldfusion (CVE-2024-20767). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-29300 KEV [KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2023-29300)
vulnerability in Adobe coldfusion (CVE-2023-29300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-38203 KEV [KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2023-38203)
vulnerability in Adobe coldfusion (CVE-2023-38203). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-26359 KEV [KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2023-26359)
vulnerability in Adobe coldfusion (CVE-2023-26359). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-29298 KEV [KEV] Vulnerability in Adobe coldfusion (CVE-2023-29298)
vulnerability in Adobe coldfusion (CVE-2023-29298). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-38205 KEV [KEV] Vulnerability in Adobe coldfusion (CVE-2023-38205)
vulnerability in Adobe coldfusion (CVE-2023-38205). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2023-26360 KEV [KEV] Vulnerability in Adobe coldfusion (CVE-2023-26360)
vulnerability in Adobe coldfusion (CVE-2023-26360). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2010-2861 KEV [KEV] Path Traversal in Adobe coldfusion (CVE-2010-2861)
path traversal in Adobe coldfusion (CVE-2010-2861). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0629 KEV [KEV] Vulnerability in Adobe coldfusion (CVE-2013-0629)
vulnerability in Adobe coldfusion (CVE-2013-0629). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0631 KEV [KEV] Information Disclosure in Adobe coldfusion (CVE-2013-0631)
vulnerability in Adobe coldfusion (CVE-2013-0631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0625 KEV [KEV] Vulnerability in Adobe coldfusion (CVE-2013-0625)
vulnerability in Adobe coldfusion (CVE-2013-0625). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-0632 KEV [KEV] Information Disclosure in Adobe coldfusion (CVE-2013-0632)
vulnerability in Adobe coldfusion (CVE-2013-0632). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-4939 KEV [KEV] Unsafe Deserialization in Adobe coldfusion (CVE-2018-4939)
vulnerability in Adobe coldfusion (CVE-2018-4939). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-15961 KEV [KEV] Unrestricted File Upload in Adobe coldfusion (CVE-2018-15961)
vulnerability in Adobe coldfusion (CVE-2018-15961). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-11283 Unsafe Deserialization in deserialization (CVE-2017-11283)
vulnerability in deserialization (CVE-2017-11283). Successful exploitation can lead to full system takeover.
CVE-2017-11284 Unsafe Deserialization in deserialization (CVE-2017-11284)
vulnerability in deserialization (CVE-2017-11284). Successful exploitation can lead to full system takeover.
CVE-2017-11285 Cross-Site Scripting (XSS) in adobe (CVE-2017-11285)
cross-site scripting in adobe (CVE-2017-11285). Risk of unauthorized operations or information disclosure.
CVE-2017-11286 XXE (XML External Entity) in adobe (CVE-2017-11286)
vulnerability in adobe (CVE-2017-11286). Confidential information can be exposed externally.
CVE-2017-3008 Cross-Site Scripting (XSS) in adobe (CVE-2017-3008)
cross-site scripting in adobe (CVE-2017-3008). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →