Security Advisory

CVE-2023-44352

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-17 13:31:31

Last updated 2024-10-29 16:06:40

Assigner adobe

State PUBLISHED

Description

Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victims browser.

← Browse all CVEs View on cve.org ↗