CVSS: 5.0EPSS: 1%CPEs: 3EXPL: 0CVE-2002-0576
https://notcve.org/view.php?id=CVE-2002-0576
ColdFusion 5.0 and earlier on Windows systems allows remote attackers to determine the absolute pathname of .cfm or .dbm files via an HTTP request that contains an MS-DOS device name such as NUL, which leaks the pathname in an error message. • http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0028.html http://online.securityfocus.com/archive/1/268263 http://www.iss.net/security_center/static/8866.php http://www.macromedia.com/v1/handlers/index.cfm?ID=22906 http://www.osvdb.org/3337 http://www.securityfocus.com/bid/4542 •
CVSS: 7.5EPSS: 1%CPEs: 4EXPL: 0CVE-2002-0108
https://notcve.org/view.php?id=CVE-2002-0108
Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address. Allaire Forums 2.0.4 y 2.0.5 y Foros! 3.0 y 3.1 permiten a usuarios remotos autorizados suplantar la identidad de otros usuarios (Spoofing) para enviar mensajes modificando en el formulario los campos de nombre y dirección de correo. • http://online.securityfocus.com/archive/1/249026 http://www.iss.net/security_center/static/7841.php http://www.kb.cert.org/vuls/id/575619 http://www.securityfocus.com/bid/3827 •
CVSS: 6.4EPSS: 1%CPEs: 12EXPL: 0CVE-2001-1120
https://notcve.org/view.php?id=CVE-2001-1120
Vulnerabilities in ColdFusion 2.0 through 4.5.1 SP 2 allow remote attackers to (1) read or delete arbitrary files, or (2) overwrite ColdFusion Server templates. • http://www.allaire.com/handlers/index.cfm?id=21566 http://www.kb.cert.org/vuls/id/135531 http://www.securityfocus.com/archive/1/196452 http://www.securityfocus.com/bid/3018 https://exchange.xforce.ibmcloud.com/vulnerabilities/6839 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0756
https://notcve.org/view.php?id=CVE-1999-0756
ColdFusion Administrator with Advanced Security enabled allows remote users to stop the ColdFusion server via the Start/Stop utility. • http://www.allaire.com/handlers/index.cfm?ID=10968&Method=Full https://exchange.xforce.ibmcloud.com/vulnerabilities/2207 •
CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 2CVE-1999-0800 – Allaire Forums 2.0.4 - Getfile
https://notcve.org/view.php?id=CVE-1999-0800
The GetFile.cfm file in Allaire Forums allows remote attackers to read files through a parameter to GetFile.cfm. • https://www.exploit-db.com/exploits/19193 http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00332.html http://www.allaire.com/handlers/index.cfm?ID=9602&Method=Full http://www.osvdb.org/944 https://exchange.xforce.ibmcloud.com/vulnerabilities/1748 •