WEB Adobe ColdFusion CKEditor upload.cfm Directory Traversal -1.1 (CVE-2018-15960)

Rule ID

1135192

Severity

High

Description

A directory traversal vulnerability has been reported in the CKEditor component of Adobe ColdFusion. The vulnerability is due to not properly sanitizing paths before writing files.

Impact

Remote code execution

Recommendation

Update vendor's patch.

IPS Category

Web threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2018-15960

Keywords

N/A

Date Created

2018/12/03

Last Updated

2022/01/25

This website uses cookies to ensure you get the best experience on our website.

Learn more