Описание
The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:allaire:coldfusion_server:4.0:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.09129
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
EPSS
Процентиль: 92%
0.09129
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other