Exploit for #VU4673 Directory traversal in ColdFusion
Vulnerability identifier: #VU4673
Vulnerability risk: High
CVSSv4.0: [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:A/U:Amber]
CVE-ID:
CWE-ID:
CWE-22
Exploitation vector: Network
Exploits in database: 2
- March 18, 2020
- ColdFusion 'password.properties' Hash Extraction [Metasploit]
- ColdFusion 9-10 - Credential Disclosure [Exploit-DB]
Vulnerable software:
ColdFusion
Server applications /
Application servers
Vendor: Adobe
