Medium severity6.1NVD Advisory· Published May 19, 2018· Updated Jun 17, 2026
CVE-2018-4941
CVE-2018-4941
Description
Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.
Affected products
2<=2016.0.05.328440 (Update 5) for ColdFusion 2016; <=11.0.13.328440 (Update 13) for ColdFusion 11+ 1 more
- (no CPE)range: <=2016.0.05.328440 (Update 5) for ColdFusion 2016; <=11.0.13.328440 (Update 13) for ColdFusion 11
- (no CPE)range: 10.0 Update 5 and earlier; 11.0 Update 13 and earlier
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/103718nvdThird Party AdvisoryVDB Entry
- helpx.adobe.com/security/products/coldfusion/apsb18-14.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.