Vulnerabilities > Adobe > Coldfusion > 2016
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-04-15 | CVE-2021-21087 | Cross-site Scripting vulnerability in Adobe Coldfusion 2016/2018/2021.0.0.323925 Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability. | 5.4 |
2020-07-17 | CVE-2020-9673 | Untrusted Search Path vulnerability in Adobe Coldfusion 2016/2018 Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. | 4.4 |
2020-07-17 | CVE-2020-9672 | Untrusted Search Path vulnerability in Adobe Coldfusion 2016/2018 Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. | 4.4 |
2020-06-26 | CVE-2020-3796 | Information Exposure vulnerability in Adobe Coldfusion 2016/2018 ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an improper access control vulnerability. | 4.3 |
2020-06-26 | CVE-2020-3768 | Untrusted Search Path vulnerability in Adobe Coldfusion 2016/2018 ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. | 4.4 |
2020-06-26 | CVE-2020-3767 | Improper Input Validation vulnerability in Adobe Coldfusion 2016/2018 ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an insufficient input validation vulnerability. | 4.3 |
2020-03-25 | CVE-2020-3794 | Improper Input Validation vulnerability in Adobe Coldfusion 2016/2018 ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a file inclusion vulnerability. | 10.0 |
2020-03-25 | CVE-2020-3761 | Information Exposure vulnerability in Adobe Coldfusion 2016/2018 ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a remote file read vulnerability. | 5.0 |
2019-09-27 | CVE-2019-8074 | Path Traversal vulnerability in Adobe Coldfusion 2016/2018 ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. | 10.0 |
2019-09-27 | CVE-2019-8073 | Command Injection vulnerability in Adobe Coldfusion 2016/2018 ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Command Injection via Vulnerable component vulnerability. | 10.0 |