CVE-2010-2861 - Adobe ColdFusion Directory Traversal Vulnerability

CVE ID:CVE-2010-2861

Project:Adobe

Product:ColdFusion

Date Added:2022-03-25Due Date:2022-04-15

Vulnerability Name

Adobe ColdFusion Directory Traversal Vulnerability

Description

A directory traversal vulnerability exists in the administrator console in Adobe ColdFusion which allows remote attackers to read arbitrary files.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2010-2861

Related News Articles

Leaked Black Basta Ransomware Chat Logs Reveal Inner Workings and Internal ConflictsFebruary 26, 2025

CISA and FBI: Ghost ransomware breached orgs in 70 countriesFebruary 20, 2025

Latest Security News

Latest CVE List

Common Alerts

HighAdvanced SQL Injection
HighPath Traversal
InformationalCross Site Scripting (Persistent) - Spider
HighCross Site Scripting (Persistent)
HighRemote OS Command Injection
InformationalCookie Poisoning
HighCross-Domain Misconfiguration - Silverlight
HighSource Code Disclosure - /WEB-INF Folder
InformationalInformation Disclosure - Suspicious Comments
MediumEmails Found in the Viewstate

Common CWEs