Adobe : Security Vulnerabilities, CVEs, Published In August 2010 (Directory traversal)
CVE-2010-2861
Known exploited
Public exploit
Used for ransomware
Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepackaging/editarchive.cfm, and (5) enter.cfm in CFIDE/administrator/.
Max CVSS
7.5
EPSS Score
97.08%
Published
2010-08-11
Updated
2013-09-24
CISA KEV Added
2022-03-25
1 vulnerabilities found