CVE-1999-0922
https://notcve.org/view.php?id=CVE-1999-0922
An example application in ColdFusion Server 4.0 allows remote attackers to view source code via the sourcewindow.cfm file. • http://www.allaire.com/handlers/index.cfm?ID=8739&Method=Full •
CVE-1999-0760
https://notcve.org/view.php?id=CVE-1999-0760
Undocumented ColdFusion Markup Language (CFML) tags and functions in the ColdFusion Administrator allow users to gain additional privileges. • http://www.allaire.com/handlers/index.cfm?ID=11714&Method=Full http://www.securityfocus.com/bid/550 https://exchange.xforce.ibmcloud.com/vulnerabilities/3288 •
CVE-1999-0924
https://notcve.org/view.php?id=CVE-1999-0924
The Syntax Checker in ColdFusion Server 4.0 allows remote attackers to conduct a denial of service. • http://www.allaire.com/handlers/index.cfm?ID=8739&Method=Full http://www.osvdb.org/3236 https://exchange.xforce.ibmcloud.com/vulnerabilities/1742 •
CVE-1999-0757 – Allaire ColdFusion Server 4.0.1 - 'CFCRYPT.EXE' Decrypt Pages
https://notcve.org/view.php?id=CVE-1999-0757
The ColdFusion CFCRYPT program for encrypting CFML templates has weak encryption, allowing attackers to decrypt the templates. • https://www.exploit-db.com/exploits/19220 http://www.allaire.com/handlers/index.cfm?ID=10969&Method=Full https://exchange.xforce.ibmcloud.com/vulnerabilities/2208 •
CVE-1999-0923
https://notcve.org/view.php?id=CVE-1999-0923
Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls. • http://www.allaire.com/handlers/index.cfm?ID=8739&Method=Full •