{"vulnerability": "CVE-2026-4831", "sightings": [{"uuid": "11acfd1b-4f1e-42a1-9a78-7a5f7185b055", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4831", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhwn566a4e2z", "content": "", "creation_timestamp": "2026-03-26T03:13:55.262674Z"}, {"uuid": "cd5268dc-8afa-48d7-b0a6-b7f90f014652", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48315", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3mpji4gsd5h2y", "content": "\ud83d\udc1b VULNERABILITIES CVE Notify: \ud83d\udea8 [CVE-2026-48315](https://helpx.adobe.com/security/products/coldfusion/apsb26-68.html)\nColdFusion ...\nhttps://helpx.adobe.com/security/products/coldfusion/apsb26-68.html #ZeroDay #PatchManagement #Vulnerability", "creation_timestamp": "2026-06-30T17:00:58.132086Z"}, {"uuid": "4fcbaf55-23cf-4202-8a88-cf2fa7c80046", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48316", "type": "seen", "source": "https://www.cert.dk/news/2026-07-01/Kritiske-ColdFusion-saarbarheder-aabner-for-fuld-serverovertagelse", "content": "", "creation_timestamp": "2026-07-01T09:45:11.706863Z"}, {"uuid": "c17d99a8-e23e-4911-9ed7-9e08f0a2b56e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48313", "type": "seen", "source": "https://www.cert.dk/news/2026-07-01/Kritiske-ColdFusion-saarbarheder-aabner-for-fuld-serverovertagelse", "content": "", "creation_timestamp": "2026-07-01T09:45:16.870029Z"}, {"uuid": "ebdde5c2-46db-4327-8c97-24c453b3c265", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48315", "type": "seen", "source": "https://www.cert.dk/news/2026-07-01/Kritiske-ColdFusion-saarbarheder-aabner-for-fuld-serverovertagelse", "content": "", "creation_timestamp": "2026-07-01T09:45:19.052087Z"}, {"uuid": "eb5ea2d2-943a-474b-a470-33cc2a51374d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48313", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpll4ubpnt2q", "content": "\ud83d\udd17 CVE : CVE-2026-48276, CVE-2026-48277, CVE-2026-48281, CVE-2026-48282, CVE-2026-48283, CVE-2026-48285, CVE-2026-48307, CVE-2026-48313, CVE-2026-48314, CVE-2026-48315, CVE-2026-48316", "creation_timestamp": "2026-07-01T13:00:13.327521Z"}, {"uuid": "a6438a6e-081d-4c1a-88c3-f98a3191a90d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48314", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpll4ubpnt2q", "content": "\ud83d\udd17 CVE : CVE-2026-48276, CVE-2026-48277, CVE-2026-48281, CVE-2026-48282, CVE-2026-48283, CVE-2026-48285, CVE-2026-48307, CVE-2026-48313, CVE-2026-48314, CVE-2026-48315, CVE-2026-48316", "creation_timestamp": "2026-07-01T13:00:13.375311Z"}, {"uuid": "5a103335-8c25-427f-b398-0f49ed6900b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48315", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpll4ubpnt2q", "content": "\ud83d\udd17 CVE : CVE-2026-48276, CVE-2026-48277, CVE-2026-48281, CVE-2026-48282, CVE-2026-48283, CVE-2026-48285, CVE-2026-48307, CVE-2026-48313, CVE-2026-48314, CVE-2026-48315, CVE-2026-48316", "creation_timestamp": "2026-07-01T13:00:13.418870Z"}, {"uuid": "145bb8b9-d2ab-4505-88ce-cf3fab0c0496", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48316", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpll4ubpnt2q", "content": "\ud83d\udd17 CVE : CVE-2026-48276, CVE-2026-48277, CVE-2026-48281, CVE-2026-48282, CVE-2026-48283, CVE-2026-48285, CVE-2026-48307, CVE-2026-48313, CVE-2026-48314, CVE-2026-48315, CVE-2026-48316", "creation_timestamp": "2026-07-01T13:00:13.466382Z"}, {"uuid": "c70356b4-0967-4425-bfeb-c2b564382dae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48313", "type": "seen", "source": "https://bsky.app/profile/cyfar.ca/post/3mpotfgidrq26", "content": "~Watchtowr~\nAdobe ColdFusion APSB26-68 patches 11 CVEs including multiple RCE and arbitrary file read/write via RDS and CKEditor path traversal.\n-\nIOCs: CVE-2026-48282, CVE-2026-48276, CVE-2026-48313\n-\n#CVE #ColdFusion #RCE #ThreatIntel", "creation_timestamp": "2026-07-02T20:06:10.741935Z"}, {"uuid": "f3c02861-2e04-4412-b14c-5a1a62127158", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48313", "type": "published-proof-of-concept", "source": "https://labs.watchtowr.com/its-37oc-and-all-we-can-think-about-is-coldfusion-adobe-coldfusion-security-bulletin-apsb26-68-cve-bonanza", "content": "", "creation_timestamp": "2026-07-03T04:01:03.897917Z"}, {"uuid": "5355c27f-ad81-4370-b202-0465f06ae31b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48316", "type": "published-proof-of-concept", "source": "https://labs.watchtowr.com/its-37oc-and-all-we-can-think-about-is-coldfusion-adobe-coldfusion-security-bulletin-apsb26-68-cve-bonanza", "content": "", "creation_timestamp": "2026-07-03T04:01:06.053131Z"}, {"uuid": "06e8916b-4407-4255-af96-3fc0d4d74d16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48316", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpymnkz2v22j", "content": "CVE-2026-48316\nColdFusion versions 2025.9 and earlier are affected by a security issue that could allow an attacker to execute code with the privileges of the current user. This means an attacker could potentially access\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-06T17:32:04.208961Z"}, {"uuid": "44829175-604c-44aa-abe5-f9e3c5eb256a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48316", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mq2kou357a27", "content": "CVE-2026-48316 - CRITICAL: Unauthenticated RCE in ColdFusion. CVSS 10.0. No patch available. Immediate mitigation required. #CVE #ColdFusion #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-48316/", "creation_timestamp": "2026-07-07T12:02:19.386478Z"}, {"uuid": "eb79a2a6-1875-4905-8917-2d5bcccb5159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48313", "type": "seen", "source": "https://www.acn.gov.it/portale/w/adobe-aggiornamenti-di-sicurezza-17", "content": "", "creation_timestamp": "2026-07-08T08:45:21.311582Z"}, {"uuid": "525bdc71-a4d9-4e33-bb8a-dc1715c3a715", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48315", "type": "seen", "source": "https://www.acn.gov.it/portale/w/adobe-aggiornamenti-di-sicurezza-17", "content": "", "creation_timestamp": "2026-07-08T08:45:23.501400Z"}, {"uuid": "2355b581-5f35-4ba3-a5ab-453ad12a80d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48316", "type": "seen", "source": "https://www.acn.gov.it/portale/w/adobe-aggiornamenti-di-sicurezza-17", "content": "", "creation_timestamp": "2026-07-08T08:45:25.722388Z"}, {"uuid": "37c15291-a6fe-4a9f-8df9-03f4ecc28f94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48316", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqb2tcjfsr26", "content": "\ud83d\udccc CVE-2026-48316 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code executi... https://www.cyberhub.blog/cves/CVE-2026-48316", "creation_timestamp": "2026-07-10T02:07:07.216005Z"}, {"uuid": "85c08a7d-90c8-4143-ba1c-49f057003061", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48318", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqnbzueboc2x", "content": "CVE-2026-48318 - ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)\nCVE ID : CVE-2026-48318\n \n Published : July 14, 2026, 9:16 p.m. | 35\u00a0minutes ago\n \n Description : ColdFusion is affected by an Improper Limitation of a Pathnam...", "creation_timestamp": "2026-07-14T22:47:59.976621Z"}, {"uuid": "043819df-d6f5-4a2a-bacd-7ef4e3c1ef64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48318", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqndexprug24", "content": "CVE-2026-48318\nColdFusion's security has been compromised, allowing an attacker to access sensitive files without permission. This could lead to data theft or unauthorized changes. To protect your system, update ColdFusion to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-14T23:12:06.413415Z"}, {"uuid": "6c3bff7e-681a-447e-a389-93b09a6a7396", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48319", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqndij2r5s2t", "content": "CVE-2026-48319\nColdFusion has a security flaw that could let hackers run unauthorized code on your server. This could happen without anyone needing to click on anything, making it a serious concern. You should update\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-14T23:14:05.249386Z"}, {"uuid": "7bca10d6-6446-413d-886a-7f7d45308248", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48319", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqndztabyk2g", "content": "CVE-2026-48319 - ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)\nCVE ID : CVE-2026-48319\n \n Published : July 14, 2026, 9:16 p.m. | 35\u00a0minutes ago\n \n Description : ColdFusion is affected by an Improper Limitation of a Pathnam...", "creation_timestamp": "2026-07-14T23:23:46.333067Z"}, {"uuid": "fe9cca31-128c-4e98-ba78-e2c61b67149d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48318", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116922818704001664", "content": "Adobe ColdFusion 2025 is affected by a CRITICAL path traversal vuln (CVE-2026-48318, CVSS 9.9). Attackers can read arbitrary files \u2014 no user interaction. Restrict ColdFusion access &amp; monitor logs until a patch is released. Details: https://radar.offseq.com/threat/cve-2026-48318-improper-limitation-of-a-pathname-t-89bd432b493aca98 #OffSeq #CVE202648318 #ColdFusion #Infosec", "creation_timestamp": "2026-07-15T07:30:28.041616Z"}, {"uuid": "217f42c5-9cfa-4efb-8a6b-75c8a44a5c64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48318", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqo7a5d5rj24", "content": "CVE-2026-48318: CRITICAL path traversal in Adobe ColdFusion 2025 allows attackers to read files outside intended scope. Limit service exposure &amp; monitor activity until patch info is available. https://radar.offseq.com/threat/cve-2026-48318-improper-limitation-of-a-pathname-t-89bd432b493aca98 #Off...", "creation_timestamp": "2026-07-15T07:30:29.654685Z"}, {"uuid": "b343cded-b5c0-4a22-aed8-609e9f44fcdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48318", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqq7ch56to2k", "content": "\ud83d\udccc CVE-2026-48318 - ColdFusion is affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lead to arbitrary... https://www.cyberhub.blog/cves/CVE-2026-48318", "creation_timestamp": "2026-07-16T02:37:07.145274Z"}, {"uuid": "e7fc4574-030c-4f11-aea0-845db8397715", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48310", "type": "seen", "source": "https://bsky.app/profile/experiencedigest.bsky.social/post/3mqqdjzqrcy2v", "content": "CVE-2026-48310 (HIGH) CVSS 8.6: https://experiencedigest.org/2026/07/15/211707.html", "creation_timestamp": "2026-07-16T03:52:55.524406Z"}, {"uuid": "03dc0086-7d9c-4795-835c-6177b6ee98cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48319", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqqrqk7z6m2z", "content": "\ud83d\udccc CVE-2026-48319 - ColdFusion is affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in arbitra... https://www.cyberhub.blog/cves/CVE-2026-48319", "creation_timestamp": "2026-07-16T08:07:06.640997Z"}, {"uuid": "aa7644ef-f871-485a-b4a4-b3c25e351c97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48310", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqvvzojkgg2s", "content": "\ud83d\udccc CVE-2026-48310 - Adobe Experience Manager is affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could lea... https://www.cyberhub.blog/cves/CVE-2026-48310", "creation_timestamp": "2026-07-18T09:07:07.115165Z"}]}