VYPR
Medium severity6.1NVD Advisory· Published May 19, 2018· Updated Jun 17, 2026

CVE-2018-4941

CVE-2018-4941

Description

Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Cross-Site Scripting vulnerability. Successful exploitation could lead to information disclosure.

Affected products

2
  • Adobe Inc./Coldfusioninferred2 versions
    <=2016.0.05.328440 (Update 5) for ColdFusion 2016; <=11.0.13.328440 (Update 13) for ColdFusion 11+ 1 more
    • (no CPE)range: <=2016.0.05.328440 (Update 5) for ColdFusion 2016; <=11.0.13.328440 (Update 13) for ColdFusion 11
    • (no CPE)range: 10.0 Update 5 and earlier; 11.0 Update 13 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.