← back
CVE-2010-2861

CVE-2010-2861

CVSS 9.8 CRITICALEPSS 99.7%● KEVCWE-22
In short

Adobe ColdFusion's administrator console has a flaw that lets attackers read any file on the server by manipulating a parameter called 'locale' in multiple pages. This is critical because it exposes sensitive information like database credentials and application secrets.

Technical detail

Directory traversal vulnerability in Adobe ColdFusion 9.0.1 and earlier affecting multiple administrator pages (mappings.cfm, logging/settings.cfm, datasources/index.cfm, j2eepackaging/editarchive.cfm, enter.cfm). Remote attackers can traverse the filesystem via crafted 'locale' parameter values to read arbitrary files. Requires network access to administrator console; impact includes unauthorized information disclosure of sensitive configuration data.

Summary generated and translated by AI from the official description.
Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepackaging/editarchive.cfm, and (5) enter.cfm in CFIDE/administrator/.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found3
githubgithub.com/greysneakthief/14641-v20exploitdbwww.exploit-db.com/exploits/14641unverifiedexploitdbwww.exploit-db.com/exploits/16985unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://securityreason.com/securityalert/8137http://securityreason.com/securityalert/8148https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-2861http://www.adobe.com/support/security/bulletins/apsb10-18.htmlhttp://www.gnucitizen.org/blog/coldfusion-directory-traversal-faq-cve-2010-2861/http://www.procheckup.com/vulnerability_manager/vulnerabilities/pr10-07