Adobe: >> Coldfusion >> 7.2 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2009-1875.
CVSS Score
4.3
EPSS Score
0.007
Published
2009-08-18
Session fixation vulnerability in Adobe ColdFusion 8.0.1 and earlier allows remote attackers to hijack web sessions via unspecified vectors.
CVSS Score
5.8
EPSS Score
0.003
Published
2009-08-18
Unspecified vulnerability in Adobe ColdFusion 8 and 8.0.1 and ColdFusion MX 7.0.2 allows local users to bypass sandbox restrictions, and obtain sensitive information or possibly gain privileges, via unknown vectors.
CVSS Score
7.2
EPSS Score
0.002
Published
2008-11-10
Page 3