Adobe ColdFusion path-traversal security-feature bypass (CVSS 8.8, APSB26-64) — co-disclosed; assessed, not promoted
cve · CVE-2026-47932
Coverage timeline
1
first 2026-06-15 → last 2026-06-15
Briefs
1
1 distinct
Sources cited
10
9 hosts
Sections touched
0
—
Co-occurring entities
0
no co-occurrence
Story timeline
- 2026-06-15CTI Daily Brief — 2026-06-15
Source distribution
- sansec.io2 (20%)
- bleepingcomputer.com1 (10%)
- cyberscoop.com1 (10%)
- helpnetsecurity.com1 (10%)
- helpx.adobe.com1 (10%)
- imperva.com1 (10%)
- securitymagazine.com1 (10%)
- therecord.media1 (10%)
- other1 (10%)
External references
All cited sources (10)
- helpx.adobe.comprimaryinlineAdobe PSIRT APSB26-64https://helpx.adobe.com/security/products/coldfusion/apsb26-64.html
- bleepingcomputer.cominlineBleepingComputer, 2026-06-04https://www.bleepingcomputer.com/news/security/credit-card-theft-campaign-abuses-stripe-to-host-stolen-payment-info/
- cyberscoop.cominlineCyberScoop, 2026-05-22https://cyberscoop.com/fbi-phishing-kali365-microsoft365-access-tokens/
- helpnetsecurity.cominlineHelp Net Security, 2026-05-22https://www.helpnetsecurity.com/2026/05/22/kali365-microsoft-365-phishing-fbi-warning/
- imperva.cominlineImperva, 2026-05-29https://www.imperva.com/blog/imperva-customers-protected-against-cve-2026-45247-in-mirasvit-full-page-cache-warmer-for-magento/
- sansec.ioinlineSansec, 2026-05-26https://sansec.io/research/mirasvit-cache-warmer-object-injection
- sansec.ioinlineSansec, 2026-06-04https://sansec.io/research/stripe-api-skimmer-infrastructure
- securitymagazine.cominlineSecurity Magazinehttps://www.securitymagazine.com/articles/102368-security-experts-discuss-validity-of-handalas-cal-water-hacking-claim
- therecord.mediainlineThe Record, 2026-05-22https://therecord.media/fbi-warns-of-kali365-phishing-attacks
- theregister.cominlineThe Register, 2026-05-22https://www.theregister.com/cyber-crime/2026/05/22/fbi-warns-of-kali365-as-device-code-phishing-soars/5245024
Items in briefs about Adobe ColdFusion path-traversal security-feature bypass (CVSS 8.8, APSB26-64) — co-disclosed; assessed, not promoted
No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.