Skip to main content
Skip table of contents

Coldfusion

Note: The legacy Mend SAST Application was deprecated on April 1st, 2025. For assistance with migrating to the Mend AppSec Platform, please contact your customer success manager or the success team at success@mend.io.

In this article, we cover Coldfusion support and vulnerability detection for Mend SAST.

Mend SAST-supported Coldfusion file types

File Type

.cfm

Mend SAST-supported Coldfusion frameworks

Framework

N/A

Mend SAST-supported Coldfusion vulnerability types

The Coldfusion vulnerability types detected by SAST are provided below and are organized by CWE ID within each of their identified severities.

Coldfusion high-severity vulnerability types

CWE

Vulnerability Type

CWE-22

Path/Directory Traversal

CWE-78

Command Injection

CWE-79

Cross-Site Scripting

CWE-89

SQL Injection

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close