CfBlogs
 Data Grids  CF Overflow  Follow Us!  RSS

ColdFusion Posts Around the World.
Critical Variable Mass Assignment Vulnerability in Adobe ColdFusion (CVE-2023-44350)
Critical Variable Mass Assignment Vulnerability in Adobe ColdFusion (CVE-2023-44350)
Hoya Haxa: A Security Research Blog
                                      
 Posted on: 11/16/2023 05:40:00 PM
New Blog Domain - www.hoyahaxa.com
New Blog Domain - www.hoyahaxa.com
Hoya Haxa: A Security Research Blog
I recently moved my blog over to a custom domain -- https://www.hoyahaxa.com/. Old links for hoyahaxa.blogspot.com will continue work and redirect to the new domain.  I originally started this blog as a place to share my research about
 Posted on: 10/20/2023 07:43:00 PM
Technical Details for CVE-2023-29301: Adobe ColdFusion Access Control Bypass for a CFAdmin Authentication Component
Technical Details for CVE-2023-29301: Adobe ColdFusion Access Control Bypass for a CFAdmin Authentication Component
Hoya Haxa: A Security Research Blog
Background                                      
 Posted on: 10/20/2023 04:58:00 PM
ColdFusion, Connectors, and CFAdmin Security (for more than just ColdFusion 2023 Update 5 and ColdFusion 2021 Update 11)
ColdFusion, Connectors, and CFAdmin Security (for more than just ColdFusion 2023 Update 5 and ColdFusion 2021 Update 11)
Hoya Haxa: A Security Research Blog
Introduction                                      
 Posted on: 10/19/2023 04:26:00 AM
Exploiting CVE-2017-11286 Six Years Later: XXE in ColdFusion via WDDX Packet
Exploiting CVE-2017-11286 Six Years Later: XXE in ColdFusion via WDDX Packet
Hoya Haxa: A Security Research Blog
Introduction��������Six years ago today, on September 12, 2017, Adobe released
 Posted on: 09/12/2023 07:30:00 AM
Technical Details for CVE-2023-29301: Adobe ColdFusion Access Control Bypass for a CFAdmin Authentication Component
Technical Details for CVE-2023-29301: Adobe ColdFusion Access Control Bypass for a CFAdmin Authentication Component
Hoya Haxa: A Security Research Blog
Background                                      
 Posted on: 08/30/2023 01:10:00 PM
On ColdFusion, AES, and Padding Oracle Attacks: Hic Sunt Dracones
On ColdFusion, AES, and Padding Oracle Attacks: Hic Sunt Dracones
Hoya Haxa: A Security Research Blog
TL; DR: If you use AES-CBC (or another block cipher operating in CBC mode) to decrypt user-controlled ciphertext, validate the ciphertext with an HMAC or similar integrity check prior to decryption to avoid Padding Oracle vulnerabilities.  All user-contr...
 Posted on: 08/30/2023 06:28:00 AM
On ColdFusion, XXE, and other XML Attacks
On ColdFusion, XXE, and other XML Attacks
Hoya Haxa: A Security Research Blog
Skip the intro and jump right to how to secure things...An IntroductionThis is the first of what may become a few blog posts based on my
 Posted on: 08/30/2023 06:03:00 AM
SSRF in ColdFusion/CFML Tags and Functions
SSRF in ColdFusion/CFML Tags and Functions
Hoya Haxa: A Security Research Blog
TL;DR: Several ColdFusion/CFML tags and functions can process URLs as file path arguments -- including some tags and and functions that you might not expect.  This can lead to Server-Side Request Forgery (SSRF) vulnerabilities in your code.  Developers should be sure to vali...
 Posted on: 08/30/2023 05:59:00 AM
Stupid Unix Tricks - Using $IFS in Web Application Command Injection Vulnerabilities for Full RCE
Stupid Unix Tricks - Using $IFS in Web Application Command Injection Vulnerabilities for Full RCE
Hoya Haxa: A Security Research Blog
Awhile ago I was testing a web application and found a command injection vulnerability.  The payload could be sent via an email address field, so something like:{7*7}@foo.comreturned:
 Posted on: 08/30/2023 05:58:00 AM
Bygone Vulnerabilities - Remote Code Execution in Oracle Reports 10g/11g
Bygone Vulnerabilities - Remote Code Execution in Oracle Reports 10g/11g
Hoya Haxa: A Security Research Blog
Looking back at old vulnerabilities can be both fun and useful.  Part history, part nostalgia, and still a healthy dose of understanding the technical innerworkings of some software or system.  I'm sure that George Santayana would agree.  I had planned to go into deta...
 Posted on: 08/30/2023 05:58:00 AM
Stupid Unix Tricks - Escaping a Restricted Shell
Stupid Unix Tricks - Escaping a Restricted Shell
Hoya Haxa: A Security Research Blog
Welcome to the first post of what may become a series - Stupid Unix Tricks.I love stupid Unix tricks.  Even better if they can be used for something security-related.  This remains one of my favorite security advi...
 Posted on: 08/30/2023 05:58:00 AM
Second post - a blog introduction
Second post - a blog introduction
Hoya Haxa: A Security Research Blog
A new security blog. In 2021. Um...yeah. I've been working in information security for the past 20+ years.  These days, most of my focus is on application security, penetration testing, red teaming, and offense — although I have plenty of slowly-aging experience in incident...
 Posted on: 08/30/2023 05:58:00 AM
Slides from ColdFusion Summit 2022 -
Slides from ColdFusion Summit 2022 - "Below the Surface: Web Vulnerabilities Hiding in your Applications"
Hoya Haxa: A Security Research Blog
                                      
 Posted on: 08/30/2023 05:57:00 AM
Bygone Vulnerabilities - Remote Code Execution in IBM Lotus SameTime Clients (CVE-2013-0553)
Bygone Vulnerabilities - Remote Code Execution in IBM Lotus SameTime Clients (CVE-2013-0553)
Hoya Haxa: A Security Research Blog
IntroductionIt's time to dive into another old vulnerability.  Let's go back to 2013.  Argo lit up the silver screen.  The dulcet sounds of Daft Punk filled the air.  And the kids would tick-tock away the hours online in six-second blocks watching
 Posted on: 08/30/2023 05:57:00 AM
Two One-liners for Quick ColdFusion Static Analysis Security Testing
Two One-liners for Quick ColdFusion Static Analysis Security Testing
Hoya Haxa: A Security Research Blog
 I want to find all of the security bugs.  I'm sure you do too.  (Click here to skip all the background info and just jump to the two one-liners.) 
 Posted on: 08/30/2023 05:57:00 AM
Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)
Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)
Hoya Haxa: A Security Research Blog
                                      
 Posted on: 08/30/2023 05:56:00 AM
Preliminary Security Advisory - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)
Preliminary Security Advisory - Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002)
Hoya Haxa: A Security Research Blog
Update March 6, 2023 - the full security advisory has been posted here: https://hoyahaxa.blogspot.com/2023/03/authentication-bypass-mura-masa.html
 Posted on: 08/30/2023 05:55:00 AM
Slides from ColdFusion Summit East 2023 -
Slides from ColdFusion Summit East 2023 - "Codes, Ciphers, and ColdFusion: What They Don't Want You To Know"
Hoya Haxa: A Security Research Blog
                                      
 Posted on: 08/30/2023 05:53:00 AM
Why You Don't Want To Use CFMX_COMPAT Encryption
Why You Don't Want To Use CFMX_COMPAT Encryption
Hoya Haxa: A Security Research Blog
This is the first of what may be a couple of posts about my presentation from ColdFusion Summit East 2023, which was held in April in Washington, DC.Let's talk about ColdFusion ...
 Posted on: 08/30/2023 05:52:00 AM



Footer Logo

Powered by Galaxy Blog

If you have an ideathat you want to share, please contact us! This community can only thrive if we continue to work together.

Images and Photography:

Gregory Alexander either owns the copyright, or has the rights to use, all images and photographs on the site. If an image is not part of the "Galaxie Blog" open sourced distribution package, and instead is part of a personal blog post or a comment, please contact us and the author of the post or comment to obtain permission if you would like to use a personal image or photograph found on this site.

Credits:

Portions of Galaxie Blog are powered on the server side by BlogCfc, an open source blog developed by Raymond Camden. Revitalizing BlogCfc was a part of my orginal inspiration that prompted me to design this site.

Version:

Galaxie Blog Version 3.0 (Toby's Edition) June 14th 2022 Tropical Wave theme