GCVE - cpe:2.3:a:allaire:coldfusion_server:3.01:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:allaire:coldfusion_server:3.01:*:*:*:*:*:*:*

part: a version: 3.01 update: *

Vendor	Allaire (`a0b1f4af-8c85-5fcf-a11d-6d758962e057`)
Product	Coldfusion Server (`83a4c3b5-e0b2-574f-8df6-95ba3accbac3`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2000-0538`	vulnerable	2026-06-08 04:45:18.279163	Details available ColdFusion Administrator for ColdFusion 4.5.1 and earlier allows remote attackers to cause a denial of service via a long login password. Published: 2000-10-13T04:00:00.000Z Updated: 2024-08-08T05:21:31.209Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=96045469627806&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/4611 http://www.osvdb.org/3399 http://www.allaire.com/handlers/index.cfm?ID=16122&Method=Full http://www.securityfocus.com/bid/1314	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-1999-0477`	vulnerable	2026-06-08 04:44:58.045321	Details available The Expression Evaluator in the ColdFusion Application Server allows a remote attacker to upload files to the server via openfile.cfm, which does not restrict access to the server properly. Published: 2000-02-04T05:00:00.000Z Updated: 2024-08-01T16:41:45.334Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/115	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.