Search Results (24 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2000-0334 1 Allaire 1 Spectra 2026-04-16 N/A
The Allaire Spectra container editor preview tool does not properly enforce object security, which allows an attacker to conduct unauthorized activities via an object-method that is added to the container object with a publishing rule.
CVE-1999-0477 1 Allaire 1 Coldfusion Server 2026-04-16 N/A
The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly.
CVE-2002-0108 1 Allaire 1 Forums 2026-04-16 N/A
Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address.
CVE-1999-0924 1 Allaire 1 Coldfusion Server 2026-04-16 N/A
The Syntax Checker in ColdFusion Server 4.0 allows remote attackers to conduct a denial of service.