{"vulnerability": "CVE-2011-0736", "sightings": [{"uuid": "c98b85ed-371d-4a38-9d94-102e0bc6bb22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2011-0736", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2436", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2011-0736\n\ud83d\udd39 Description: Adobe ColdFusion 9.0.1 CHF1 and earlier, when a web application is configured to use a DBMS, allows remote attackers to obtain potentially sensitive information about the database structure via an id=- query to a .cfm file.  NOTE: the vendor disputes the significance of this issue because the Site-wide Error Handler and Debug Output Settings sections of the ColdFusion Lockdown guide explain the requirement for settings that prevent this information disclosure\n\ud83d\udccf Published: 2011-02-01T17:00:00\n\ud83d\udccf Modified: 2025-01-21T17:41:57.007Z\n\ud83d\udd17 References:\n1. http://osvdb.org/70780\n2. http://websecurity.com.ua/4879/\n3. http://archives.neohapsis.com/archives/fulldisclosure/2011-01/0537.html", "creation_timestamp": "2025-01-21T18:00:48.000000Z"}]}