cve/2018/CVE-2018-15961.md

### [CVE-2018-15961](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15961)
![](https://img.shields.io/static/v1?label=Product&message=ColdFusion&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Unrestricted%20file%20upload&color=brighgreen)

### Description

Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.

### POC

#### Reference
- https://www.exploit-db.com/exploits/45979/

#### Github
- https://github.com/0day404/vulnerability-poc
- https://github.com/0xAJ2K/CVE-2018-15961
- https://github.com/0xT11/CVE-POC
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/ArrestX/--POC
- https://github.com/HimmelAward/Goby_POC
- https://github.com/KayCHENvip/vulnerability-poc
- https://github.com/Miraitowa70/POC-Notes
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/Pocm0n/Web-Coldfusion-Vulnerability-POC
- https://github.com/Threekiii/Awesome-POC
- https://github.com/Z0fhack/Goby_POC
- https://github.com/anquanscan/sec-tools
- https://github.com/bu1xuan2/CVE-2018-15961
- https://github.com/byteofandri/CVE-2018-15961
- https://github.com/byteofjoshua/CVE-2018-15961
- https://github.com/cetriext/fireeye_cves
- https://github.com/cved-sources/cve-2018-15961
- https://github.com/d4n-sec/d4n-sec.github.io
- https://github.com/dudacgf/ovr_convert
- https://github.com/eeenvik1/scripts_for_YouTrack
- https://github.com/lnick2023/nicenice
- https://github.com/orangmuda/CVE-2018-15961
- https://github.com/qazbnm456/awesome-cve-poc
- https://github.com/vah13/CVE-2018-15961
- https://github.com/whitfieldsdad/epss
- https://github.com/xbl3/awesome-cve-poc_qazbnm456
- https://github.com/xbufu/CVE-2018-15961
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2018-15961](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15961)`
			`![](https://img.shields.io/static/v1?label=Product&message=ColdFusion&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Unrestricted%20file%20upload&color=brighgreen)`

			`### Description`

			`Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.`

			`### POC`

			`#### Reference`
			`- https://www.exploit-db.com/exploits/45979/`

			`#### Github`
			`- https://github.com/0day404/vulnerability-poc`
			`- https://github.com/0xAJ2K/CVE-2018-15961`
			`- https://github.com/0xT11/CVE-POC`
			`- https://github.com/ARPSyndicate/cvemon`
			`- https://github.com/ARPSyndicate/kenzer-templates`
			`- https://github.com/ArrestX/--POC`
			`- https://github.com/HimmelAward/Goby_POC`
			`- https://github.com/KayCHENvip/vulnerability-poc`
			`- https://github.com/Miraitowa70/POC-Notes`
			`- https://github.com/Ostorlab/KEV`
			`- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors`
			`- https://github.com/Pocm0n/Web-Coldfusion-Vulnerability-POC`
			`- https://github.com/Threekiii/Awesome-POC`
			`- https://github.com/Z0fhack/Goby_POC`
			`- https://github.com/anquanscan/sec-tools`
			`- https://github.com/bu1xuan2/CVE-2018-15961`
			`- https://github.com/byteofandri/CVE-2018-15961`
			`- https://github.com/byteofjoshua/CVE-2018-15961`
			`- https://github.com/cetriext/fireeye_cves`
			`- https://github.com/cved-sources/cve-2018-15961`
			`- https://github.com/d4n-sec/d4n-sec.github.io`
			`- https://github.com/dudacgf/ovr_convert`
			`- https://github.com/eeenvik1/scripts_for_YouTrack`
			`- https://github.com/lnick2023/nicenice`
			`- https://github.com/orangmuda/CVE-2018-15961`
			`- https://github.com/qazbnm456/awesome-cve-poc`
			`- https://github.com/vah13/CVE-2018-15961`
			`- https://github.com/whitfieldsdad/epss`
			`- https://github.com/xbl3/awesome-cve-poc_qazbnm456`
			`- https://github.com/xbufu/CVE-2018-15961`