CVE-2023-44352

CVSS V2 None CVSS V3 None
Description
Adobe ColdFusion versions 2023.5 (and earlier) and 2021.11 (and earlier) are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an unauthenticated attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.
Overview
  • CVE ID
  • CVE-2023-44352
  • Assigner
  • adobe
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-11-17T13:31:31.903Z
  • Last Modified Date
  • 2023-11-17T13:31:31.903Z
References
Reference URL Reference Tags
https://helpx.adobe.com/security/products/coldfusion/apsb23-52.html vendor-advisory
History
Created Old Value New Value Data Type Notes
2024-06-25 12:34:54 Added to TrackCVE