← CVECheck
HomeVulnerabilities

CVE-2000-0189 — MEDIUM severity vulnerability (ColdFusion Server 4.x allows remote attackers to determine t)

ColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend.cfm files.

CVE IDCVE-2000-0189
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2000-03-01
Last modified2026-04-16
DescriptionColdFusion Server 4.x allows remote attackers to determine the real pathname of the server via an HTTP request to the application.cfm or onrequestend.cfm files.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →