CVE-2011-0733 in ColdFusion信息

摘要

由 MITRE

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion before 9.0.1 CHF1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header in an id=- query to a .cfm file.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

预定

2011-02-01

披露

2011-02-01

管理

已接受

条目

VDB-56288

CPE

准备好

CWE

CWE-79 (已确认)

CVSS

4.3 (VulDB)

EPSS

0.04085

KEV

否

活动

非常低

部门

Hostingprovider, Finance, ...

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0733
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0733
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0733/

◂ 上一步一览下一步 ▸

Interested in the pricing of exploits?

See the underground prices here!