VulDB Recent Entries

A vulnerability, which was classified as problematic, was found in Adobe Commerce up to 2.4.8-beta2. This affects an unknown part. The manipulation leads to cross-site request forgery. This vulnerability is uniquely identified as CVE-2025-27189. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. Affected by this issue is some unknown functionality. The manipulation leads to information disclosure. This vulnerability is handled as CVE-2025-30291. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. Affected by this vulnerability is an unknown functionality. The manipulation leads to path traversal. This vulnerability is known as CVE-2025-30290. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. Affected is an unknown function. The manipulation leads to os command injection. This vulnerability is traded as CVE-2025-30289. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to deserialization. The identification of this vulnerability is CVE-2025-30284. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. It has been declared as critical. This vulnerability affects unknown code. The manipulation leads to deserialization. This vulnerability was named CVE-2025-24447. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. It has been classified as critical. This affects an unknown part. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2025-24446. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe ColdFusion up to 2021.18/2023.12/2025.0 and classified as critical. Affected by this issue is some unknown functionality. The manipulation leads to improper authentication. This vulnerability is handled as CVE-2025-30287. The attack needs to be approached locally. There is no exploit available.

A vulnerability has been found in Adobe ColdFusion up to 2021.18/2023.12/2025.0 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper authentication. This vulnerability is known as CVE-2025-30282. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. Affected is an unknown function. The manipulation leads to os command injection. This vulnerability is traded as CVE-2025-30286. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Adobe ColdFusion up to 2021.18/2023.12/2025.0. This issue affects some unknown processing. The manipulation leads to deserialization. The identification of this vulnerability is CVE-2025-30285. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Adobe Framemaker up to 2020.8/2022.6. This vulnerability affects unknown code. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2025-30301. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Adobe Framemaker up to 2020.8/2022.6. This affects an unknown part. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-30300. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Commerce up to 2.4.8-beta2. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation leads to insufficiently protected credentials. This vulnerability is handled as CVE-2025-27192. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Commerce up to 2.4.8-beta2. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to improper access controls. This vulnerability is known as CVE-2025-27191. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Commerce up to 2.4.8-beta2. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2025-27190. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Adobe Framemaker up to 2020.8/2022.6 and classified as critical. This vulnerability affects unknown code. The manipulation leads to out-of-bounds write. This vulnerability was named CVE-2025-30304. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Adobe Commerce up to 2.4.8-beta2 and classified as critical. This issue affects some unknown processing. The manipulation leads to improper authorization. The identification of this vulnerability is CVE-2025-27188. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Adobe Framemaker up to 2020.8/2022.6. This affects an unknown part. The manipulation leads to heap-based buffer overflow. This vulnerability is uniquely identified as CVE-2025-30299. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Adobe Framemaker up to 2020.8/2022.6. Affected by this issue is some unknown functionality. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-30303. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.