All categories

Critical Variable Mass Assignment Vulnerability in Adobe ColdFusion (CVE-2023-44350)

BackgroundAdobe ColdFusion is vulnerable to a Mass Assignment vulnerability that can result in an attacker being able to modify the value of any variable in any scope within the context of remote CFC methods.

From: Hoya Haxa - A Security Research Blog

11/15/23, 5:01 PM Coldfusion

New Blog Domain - www.hoyahaxa.com

I recently moved my blog over to a custom domain -- https://www.

From: Hoya Haxa - A Security Research Blog

10/19/23, 4:00 PM Coldfusion

New Blog Domain - www.hoyahaxa.com

I recently moved my blog over to a custom domain -- https://www.

From: Hoya Haxa - A Security Research Blog

10/19/23, 4:00 PM Coldfusion

ColdFusion, Connectors, and CFAdmin Security (for more than just ColdFusion 2023 Update 5 and ColdFusion 2021 Update 11)

IntroductionThis post is about ColdFusion 2023 Update 5 and ColdFusion 2021 Update 11, but it's also about more than just those versions.

From: Hoya Haxa - A Security Research Blog

10/18/23, 8:37 PM Coldfusion

ColdFusion, Connectors, and CFAdmin Security (for more than just ColdFusion 2023 Update 5 and ColdFusion 2021 Update 11)

IntroductionThis post is about ColdFusion 2023 Update 5 and ColdFusion 2021 Update 11, but it's also about more than just those versions.

From: Hoya Haxa - A Security Research Blog

10/18/23, 8:37 PM Coldfusion

Exploiting CVE-2017-11286 Six Years Later: XXE in ColdFusion via WDDX Packet

Introduction🎈🎂🎂🎂🎂🎂🎂🎈Six years ago today, on September 12, 2017, Adobe released APSB17-30.

From: Hoya Haxa - A Security Research Blog

9/12/23, 7:30 AM Coldfusion

Exploiting CVE-2017-11286 Six Years Later: XXE in ColdFusion via WDDX Packet

Introduction🎈🎂🎂🎂🎂🎂🎂🎈Six years ago today, on September 12, 2017, Adobe released APSB17-30.

From: Hoya Haxa - A Security Research Blog

9/12/23, 7:30 AM Coldfusion

Technical Details for CVE-2023-29301: Adobe ColdFusion Access Control Bypass for a CFAdmin Authentication Component

BackgroundIn this post I'll be walking though CVE-2023-29301, which is an access control bypass / password brute force vulnerability in Adobe ColdFusion that I reported to Adobe and was fixed on July 11, 2023 in Adobe Product Security Bulletin APSB23-40.

From: Hoya Haxa - A Security Research Blog

8/30/23, 1:09 PM Coldfusion

Technical Details for CVE-2023-29301: Adobe ColdFusion Access Control Bypass for a CFAdmin Authentication Component

BackgroundIn this post I'll be walking though CVE-2023-29301, which is an access control bypass / password brute force vulnerability in Adobe ColdFusion that I reported to Adobe and was fixed on July 11, 2023 in Adobe Product Security Bulletin APSB23-40.

From: Hoya Haxa - A Security Research Blog

8/30/23, 1:09 PM Coldfusion

On ColdFusion, AES, and Padding Oracle Attacks: Hic Sunt Dracones

TL; DR: If you use AES-CBC (or another block cipher operating in CBC mode) to decrypt user-controlled ciphertext, validate the ciphertext with an HMAC or similar integrity check prior to decryption to avoid Padding Oracle vulnerabilities.

From: Hoya Haxa - A Security Research Blog

7/4/23, 2:20 AM Coldfusion

On ColdFusion, AES, and Padding Oracle Attacks: Hic Sunt Dracones

TL; DR: If you use AES-CBC (or another block cipher operating in CBC mode) to decrypt user-controlled ciphertext, validate the ciphertext with an HMAC or similar integrity check prior to decryption to avoid Padding Oracle vulnerabilities.

From: Hoya Haxa - A Security Research Blog

7/4/23, 2:20 AM Coldfusion

Why You Don't Want To Use CFMX_COMPAT Encryption

This is the first of what may be a couple of posts about my presentation from ColdFusion Summit East 2023, which was held in April in Washington, DC.

From: Hoya Haxa - A Security Research Blog

5/13/23, 2:54 AM Coldfusion

Why You Don't Want To Use CFMX_COMPAT Encryption

This is the first of what may be a couple of posts about my presentation from ColdFusion Summit East 2023, which was held in April in Washington, DC.

From: Hoya Haxa - A Security Research Blog

5/13/23, 2:54 AM Coldfusion

Slides from ColdFusion Summit East 2023 - "Codes, Ciphers, and ColdFusion: What They Don't Want You To Know"

I spoke at ColdFusion Summit East 2023 last week.

From: Hoya Haxa - A Security Research Blog

4/10/23, 3:21 PM Coldfusion

Slides from ColdFusion Summit East 2023 - "Codes, Ciphers, and ColdFusion: What They Don't Want You To Know"

I spoke at ColdFusion Summit East 2023 last week.

From: Hoya Haxa - A Security Research Blog

4/10/23, 3:21 PM Coldfusion

Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

BackgroundMura CMS is a popular content management system written in ColdFusion/CFML.

From: Hoya Haxa - A Security Research Blog

3/6/23, 9:00 AM Coldfusion

Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

BackgroundMura CMS is a popular content management system written in ColdFusion/CFML.

From: Hoya Haxa - A Security Research Blog

3/6/23, 9:00 AM Coldfusion

Preliminary Security Advisory - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

Update March 6, 2023 - the full security advisory has been posted here: https://hoyahaxa.

From: Hoya Haxa - A Security Research Blog

1/28/23, 8:40 PM Coldfusion

Preliminary Security Advisory - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)

Update March 6, 2023 - the full security advisory has been posted here: https://hoyahaxa.

From: Hoya Haxa - A Security Research Blog

1/28/23, 8:40 PM Coldfusion

Feeds