cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-9673,https://securityvulnerability.io/vulnerability/CVE-2020-9673,,"Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.",Adobe,"Adobe Coldfusion 2016,Adobe Coldfusion 2018",7.8,HIGH,0.00107999995816499,false,,false,false,false,,,false,false,,2020-07-17T00:01:14.000Z,0
CVE-2020-9672,https://securityvulnerability.io/vulnerability/CVE-2020-9672,,"Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-order hijacking vulnerability. Successful exploitation could lead to privilege escalation.",Adobe,"Adobe Coldfusion 2016,Adobe Coldfusion 2018",7.8,HIGH,0.00107999995816499,false,,false,false,false,,,false,false,,2020-07-17T00:00:52.000Z,0
CVE-2018-4938,https://securityvulnerability.io/vulnerability/CVE-2018-4938,,"Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Insecure Library Loading vulnerability. Successful exploitation could lead to local privilege escalation.",Adobe,"Adobe Coldfusion Coldfusion Update 5 And Earlier Versions, Coldfusion 11 Update 13 And Earlier Versions",7.8,HIGH,0.0005499999970197678,false,,false,false,false,,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2018-4939,https://securityvulnerability.io/vulnerability/CVE-2018-4939,,"Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Deserialization of Untrusted Data vulnerability. Successful exploitation could lead to arbitrary code execution.",Adobe,"Adobe Coldfusion Coldfusion Update 5 And Earlier Versions, Coldfusion 11 Update 13 And Earlier Versions",9.8,CRITICAL,0.9645299911499023,true,2021-11-03T00:00:00.000Z,false,false,true,2021-11-03T00:00:00.000Z,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2018-4941,https://securityvulnerability.io/vulnerability/CVE-2018-4941,,"Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.",Adobe,"Adobe Coldfusion Coldfusion Update 5 And Earlier Versions, Coldfusion 11 Update 13 And Earlier Versions",6.1,MEDIUM,0.000910000002477318,false,,false,false,false,,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2018-4942,https://securityvulnerability.io/vulnerability/CVE-2018-4942,,"Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Unsafe XML External Entity Processing vulnerability. Successful exploitation could lead to information disclosure.",Adobe,"Adobe Coldfusion Coldfusion Update 5 And Earlier Versions, Coldfusion 11 Update 13 And Earlier Versions",7.5,HIGH,0.001550000044517219,false,,false,false,false,,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2018-4940,https://securityvulnerability.io/vulnerability/CVE-2018-4940,,"Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.",Adobe,"Adobe Coldfusion Coldfusion Update 5 And Earlier Versions, Coldfusion 11 Update 13 And Earlier Versions",6.1,MEDIUM,0.000910000002477318,false,,false,false,false,,,false,false,,2018-05-19T17:00:00.000Z,0
CVE-2017-11284,https://securityvulnerability.io/vulnerability/CVE-2017-11284,,"Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.",Adobe,Adobe Coldfusion Update 4 And Earlier Versions For Coldfusion 2016 Release. Update 12 And Earlier Versions For Coldfusion 11.,9.8,CRITICAL,0.34571999311447144,false,,false,false,false,,,false,false,,2017-12-01T08:00:00.000Z,0
CVE-2017-11285,https://securityvulnerability.io/vulnerability/CVE-2017-11285,,"Adobe ColdFusion has a cross-site scripting (XSS) vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.",Adobe,Adobe Coldfusion Update 4 And Earlier Versions For Coldfusion 2016 Release. Update 12 And Earlier Versions For Coldfusion 11.,6.1,MEDIUM,0.0020000000949949026,false,,false,false,false,,,false,false,,2017-12-01T08:00:00.000Z,0
CVE-2017-11286,https://securityvulnerability.io/vulnerability/CVE-2017-11286,,"Adobe ColdFusion has an XML external entity (XXE) injection vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.",Adobe,Adobe Coldfusion Update 4 And Earlier Versions For Coldfusion 2016 Release. Update 12 And Earlier Versions For Coldfusion 11.,7.5,HIGH,0.0019499999471008778,false,,false,false,false,,,false,false,,2017-12-01T08:00:00.000Z,0
CVE-2017-11283,https://securityvulnerability.io/vulnerability/CVE-2017-11283,,"Adobe ColdFusion has an Untrusted Data Deserialization vulnerability. This affects Update 4 and earlier versions for ColdFusion 2016, and Update 12 and earlier versions for ColdFusion 11.",Adobe,Adobe Coldfusion Update 4 And Earlier Versions For Coldfusion 2016 Release. Update 12 And Earlier Versions For Coldfusion 11.,9.8,CRITICAL,0.34571999311447144,false,,false,false,false,,,false,false,,2017-12-01T08:00:00.000Z,0
CVE-2017-3066,https://securityvulnerability.io/vulnerability/CVE-2017-3066,,"Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a Java deserialization vulnerability in the Apache BlazeDS library. Successful exploitation could lead to arbitrary code execution.",Adobe,"Adobe Coldfusion Coldfusion 2016 Update 3 And Earlier, Coldfusion 11 Update 11 And Earlier, Coldfusion 10 Update 22 And Earlier",9.8,CRITICAL,0.9060500264167786,false,,false,false,true,2019-10-09T11:13:00.000Z,true,false,false,,2017-04-27T14:00:00.000Z,0
CVE-2017-3008,https://securityvulnerability.io/vulnerability/CVE-2017-3008,,"Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a reflected cross-site scripting vulnerability.",Adobe,"Adobe Coldfusion Coldfusion 2016 Update 3 And Earlier, Coldfusion 11 Update 11 And Earlier, Coldfusion 10 Update 22 And Earlier",6.1,MEDIUM,0.002850000048056245,false,,false,false,false,,,false,false,,2017-04-27T14:00:00.000Z,0
CVE-2016-7887,https://securityvulnerability.io/vulnerability/CVE-2016-7887,,"Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important vulnerability that could lead to information disclosure.",Adobe,"Adobe Coldfusion Builder 2016 Update 2 And Earlier, 3.0.3 And Earlier",7.5,HIGH,0.003060000017285347,false,,false,false,false,,,false,false,,2016-12-15T06:31:00.000Z,0