CVE-1999-0455

ColdFusion Server - Unauthenticated Arbitrary File Read and Delete via Expression Evaluator Sample

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0455.

AI-analyzed exploit summary This exploit leverages a path traversal vulnerability in ColdFusion's ExprCalc.cfm to read, delete, or upload arbitrary files on the server. By manipulating the OpenFilePath parameter, an attacker can access sensitive files or execute malicious ColdFusion scripts.

Description

The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.

Exploits (1)

exploitdb WORKING POC

remotemultiple

https://www.exploit-db.com/exploits/19093

View Code ZIP pw:eip

This exploit leverages a path traversal vulnerability in ColdFusion's ExprCalc.cfm to read, delete, or upload arbitrary files on the server. By manipulating the OpenFilePath parameter, an attacker can access sensitive files or execute malicious ColdFusion scripts.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Adobe ColdFusion (version not specified)

No auth needed

Prerequisites: Access to the vulnerable ColdFusion server · Knowledge of the target file paths

MITRE ATT&CK

T1005 - Data from Local System T1105 - Ingress Tool Transfer

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/115

Scores

EPSS 0.0548

EPSS Percentile 91.7%

Details

Status published

Products (1)

allaire/coldfusion_server 4.0

Published Dec 25, 1999

Tracked Since Feb 18, 2026