VYPR
Unrated severityNVD Advisory· Published Mar 12, 2008· Updated Jun 16, 2026

CVE-2008-0644

CVE-2008-0644

Description

Adobe ColdFusion MX 7 and ColdFusion 8 allows remote attackers to bypass the cross-site scripting (XSS) protection mechanism for applications via unspecified vectors related to the setEncoding function.

Affected products

6
  • cpe:2.3:a:adobe:coldfusion:7.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:adobe:coldfusion:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:coldfusion:7.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:coldfusion:7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:adobe:coldfusion:8.0:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.