CVE-2009-3467
Adobe Coldfusion < 9.0 - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in an unspecified method in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Scores
EPSS
0.0082
EPSS Percentile
74.1%
Classification
CWE
CWE-79
Status
published
Affected Products (12)
adobe/coldfusion
< 9.0
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
adobe/coldfusion
n/a/n/a
Timeline
Published
May 13, 2010
Tracked Since
Feb 18, 2026