VYPR
Unrated severityNVD Advisory· Published Mar 12, 2008· Updated Jun 16, 2026

CVE-2008-0643

CVE-2008-0643

Description

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

7
  • cpe:2.3:a:adobe:coldfusion:7.0:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:adobe:coldfusion:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:coldfusion:7.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:coldfusion:7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:coldfusion:8.0:*:*:*:*:*:*:*
    • (no CPE)
    • (no CPE)

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.