{"vulnerability": "cve-2026-48318", "sightings": [{"uuid": "85c08a7d-90c8-4143-ba1c-49f057003061", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48318", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqnbzueboc2x", "content": "CVE-2026-48318 - ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)\nCVE ID : CVE-2026-48318\n \n Published : July 14, 2026, 9:16 p.m. | 35\u00a0minutes ago\n \n Description : ColdFusion is affected by an Improper Limitation of a Pathnam...", "creation_timestamp": "2026-07-14T22:47:59.976621Z"}, {"uuid": "043819df-d6f5-4a2a-bacd-7ef4e3c1ef64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48318", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqndexprug24", "content": "CVE-2026-48318\nColdFusion's security has been compromised, allowing an attacker to access sensitive files without permission. This could lead to data theft or unauthorized changes. To protect your system, update ColdFusion to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-14T23:12:06.413415Z"}, {"uuid": "fe9cca31-128c-4e98-ba78-e2c61b67149d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48318", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116922818704001664", "content": "Adobe ColdFusion 2025 is affected by a CRITICAL path traversal vuln (CVE-2026-48318, CVSS 9.9). Attackers can read arbitrary files \u2014 no user interaction. Restrict ColdFusion access &amp; monitor logs until a patch is released. Details: https://radar.offseq.com/threat/cve-2026-48318-improper-limitation-of-a-pathname-t-89bd432b493aca98 #OffSeq #CVE202648318 #ColdFusion #Infosec", "creation_timestamp": "2026-07-15T07:30:28.041616Z"}, {"uuid": "217f42c5-9cfa-4efb-8a6b-75c8a44a5c64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48318", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqo7a5d5rj24", "content": "CVE-2026-48318: CRITICAL path traversal in Adobe ColdFusion 2025 allows attackers to read files outside intended scope. Limit service exposure &amp; monitor activity until patch info is available. https://radar.offseq.com/threat/cve-2026-48318-improper-limitation-of-a-pathname-t-89bd432b493aca98 #Off...", "creation_timestamp": "2026-07-15T07:30:29.654685Z"}]}