Back to directory
WRITEUP #579

Unauthenticated RCE in Adobe Coldfusion – CVE-2023-26360

RCEInsecure deserializationArbitrary file readPatch diffingSecurity code review
by@SecureLayer7(SecureLayer7)
Program
Adobe (ColdFusion)
Published
Jan 10, 2024
Added to HackDex
Feb 6, 2024
Read Full Writeuphttps://blog.securelayer7.net/unauthorized-rce-in-adobe-coldfusion/
RELATED WRITEUPS
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities
We hacked Anki - 0 day exploit from studying someone elses flashcards
RCEComponents with known vulnerabilities
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload

Built with ❤️ by Shubham Rawat