Unrated severityNVD Advisory· Published Mar 12, 2008· Updated Apr 23, 2026
CVE-2008-0643
CVE-2008-0643
Description
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
4cpe:2.3:a:adobe:coldfusion:7.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:adobe:coldfusion:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:7.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:adobe:coldfusion:8.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6News mentions
0No linked articles in our index yet.