CVE-2024-20767-Adobe-ColdFusion

Adobe ColdFusion is a rapid development platform for building and deploying web and mobile applications.

CVE-2024-20767 - ColdFusion versions 2023.6, 2021.12 and earlier are affected by an Improper Access Control vulnerability that could lead to arbitrary file system read. An attacker could leverage this vulnerability to bypass security measures and gain unauthorized access to sensitive files.

Affected versions: Adobe ColdFusion versions 2023.6, 2021.12 and earlier

Usage: python3 exploit.py -u -p -f

Usage example: python3 exploit.py -u http://127.0.0.1 -p 8500 -f /etc/passwd

Disclaimer: This exploit is to be used only for educational and authorized testing purposes. Illegal/unauthorized use of this exploit is prohibited.

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
README.md		README.md
exploit.py		exploit.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

CVE-2024-20767-Adobe-ColdFusion

About

Releases

Packages

Languages

Praison001/CVE-2024-20767-Adobe-ColdFusion

Folders and files

Latest commit

History

Repository files navigation

CVE-2024-20767-Adobe-ColdFusion

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages