Adobe ColdFusion contains a deserialization of untrusted data vulnerability that allows for remote code execution.
PoC: Adobe_ColdFusion_RCE_Unauthenticated
This exploit is based on CVE-2023-26360 (https://nvd.nist.gov/vuln/detail/CVE-2023-26360) and was built on top of the Metasploit module and the jakabakos/CVE-2023-26360-adobe-coldfusion-rce-exploit.
PoC: CVE-2023-26360
Exploit - CVE-2023-26360
PoC: CVE-2023-26360-RCE
Exploit for Remote Code Execution in ColdFusion 2021 (CVE-2023-26360)
PoC: CVE-2023-26360
CVE-2023-26360 - Adobe Coldfusion
PoC: ColdFusion_EXp
Adobe ColdFusion CVE-2023-26360/CVE-2023-29298 自动化实现反弹
PoC: CVE-2023-26360
File Read Arbrtary Exploit for CVE-2023-26360 - Adobe Coldfusion
Get alerted for CVEs like this
Register your stack and get notified within minutes when a matching CVE drops.
Start monitoring free