Total vulnerabilities in the database
ColdFusion versions Update 2 and earlier, Update 9 and earlier, and Update 17 and earlier have a file upload restriction bypass vulnerability. Successful exploitation could lead to arbitrary code execution.
| Software | From | Fixed in |
|---|---|---|
| adobe / coldfusion | 2018 | 2018.x |
| adobe / coldfusion | 2016 | 2016.x |
| adobe / coldfusion | 11.0 | 11.0.x |
| adobe / coldfusion | 11.0-update1 | 11.0-update1.x |
| adobe / coldfusion | 11.0-update10 | 11.0-update10.x |
| adobe / coldfusion | 11.0-update11 | 11.0-update11.x |
| adobe / coldfusion | 11.0-update12 | 11.0-update12.x |
| adobe / coldfusion | 11.0-update13 | 11.0-update13.x |
| adobe / coldfusion | 11.0-update14 | 11.0-update14.x |
| adobe / coldfusion | 11.0-update15 | 11.0-update15.x |
| adobe / coldfusion | 11.0-update16 | 11.0-update16.x |
| adobe / coldfusion | 11.0-update17 | 11.0-update17.x |
| adobe / coldfusion | 11.0-update2 | 11.0-update2.x |
| adobe / coldfusion | 11.0-update3 | 11.0-update3.x |
| adobe / coldfusion | 11.0-update4 | 11.0-update4.x |
| adobe / coldfusion | 11.0-update5 | 11.0-update5.x |
| adobe / coldfusion | 11.0-update6 | 11.0-update6.x |
| adobe / coldfusion | 11.0-update7 | 11.0-update7.x |
| adobe / coldfusion | 11.0-update8 | 11.0-update8.x |
| adobe / coldfusion | 11.0-update9 | 11.0-update9.x |
| adobe / coldfusion | 2016-update1 | 2016-update1.x |
| adobe / coldfusion | 2016-update2 | 2016-update2.x |
| adobe / coldfusion | 2016-update3 | 2016-update3.x |
| adobe / coldfusion | 2016-update4 | 2016-update4.x |
| adobe / coldfusion | 2016-update5 | 2016-update5.x |
| adobe / coldfusion | 2016-update6 | 2016-update6.x |
| adobe / coldfusion | 2016-update7 | 2016-update7.x |
| adobe / coldfusion | 2016-update8 | 2016-update8.x |
| adobe / coldfusion | 2016-update9 | 2016-update9.x |
| adobe / coldfusion | 2018-update1 | 2018-update1.x |
| adobe / coldfusion | 2018-update2 | 2018-update2.x |