CVE-2026-48320 in ColdFusionthông tin

Tóm tắt

Bởi MITRE • 15/07/2026

ColdFusion is affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject malicious scripts into a web page, potentially gaining elevated access or control over the victim's account or session. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

chịu trách nhiệm

Adobe

Đặt trước

21/05/2026

Tiết lộ

15/07/2026

Kiểm duyệt

được chấp nhận

EPSS

0.00000

KEV

không

Các hoạt động

rất thấp

Nguồn

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!