Exploit for #VU4673 Directory traversal in ColdFusion
Vulnerability identifier: #VU4673
Vulnerability risk: High
CVSSv3.1: 7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:F/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-22
Exploitation vector: Network
Exploits in database: 2
- March 18, 2020
- ColdFusion 'password.properties' Hash Extraction [Metasploit]
- ColdFusion 9-10 - Credential Disclosure [Exploit-DB]
Impact: Information disclosure
Vulnerable software:
ColdFusion
Server applications /
Application servers
Vendor: Adobe
