CVE Vulnerabilities

CVE-2008-0644

Published: Mar 12, 2008 | Modified: Aug 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to bypass the cross-site scripting (XSS) protection mechanism for applications via unspecified vectors related to the setEncoding function.

Affected Software

Name Vendor Start Version End Version
Coldfusion Adobe 7.0.2 7.0.2
Coldfusion Adobe 8.0 8.0
Coldfusion Adobe 7.0 7.0
Coldfusion Adobe 7.0.1 7.0.1

References