Allaire: >> Coldfusion Server >> 4.0 Security Vulnerabilities
The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
CVSS Score
7.5
EPSS Score
0.091
Published
1999-12-25
The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly.
CVSS Score
7.5
EPSS Score
0.069
Published
1999-12-25
Page 2