← CVECheck
HomeVulnerabilities

CVE-1999-0455 — HIGH severity vulnerability (The Expression Evaluator sample application in ColdFusion al)

The Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.

CVE IDCVE-1999-0455
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published1999-12-25
Last modified2026-04-16
DescriptionThe Expression Evaluator sample application in ColdFusion allows remote attackers to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →