CVE-2014-2868
PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to modify the flow of execution of ColdFusion code by using an HTTP GET request to set a ColdFusion variable.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0134 (1.3%)
Percentil: 80.1%
EPSS: 2026-05-06
Afecta
paperthin:commonspot_content_serverDescripción técnica
PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to modify the flow of execution of ColdFusion code by using an HTTP GET request to set a ColdFusion variable.
Publicada: 15/4/2014, 23:13:17
Última modificación: 6/5/2026, 22:30:45