Security Advisory

CVE-2010-2861

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-08-11 18:00:00

Last updated 2025-10-22 00:05:51

Assigner adobe

State PUBLISHED

Description

Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepackaging/editarchive.cfm, and (5) enter.cfm in CFIDE/administrator/.

← Browse all CVEs View on cve.org ↗