CVE Catalog

CVE-2000-0382

Low
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
0.92%

55th percentile — higher than 55% of all known CVEs

Summary

ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site.

Risk Assessment

Disclosure of sensitive information may lead to user privacy breaches and potential attacks on the system.

Recommendation

It is recommended to review and update the redirection configuration in ColdFusion to avoid appending stale query string arguments.

Original NVD description (English source)

ColdFusion ClusterCATS appends stale query string arguments to a URL during HTML redirection, which may provide sensitive information to the redirected site.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS