Cross-site scripting (XSS) vulnerability in Adobe ColdFusion before 9.0.1 CHF1 allows remote attackers to inject arbitrary web script or HTML via vectors involving a "tag script."
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2011-02-01 10:00
Updated : 2011-11-07 20:18
NVD link : CVE-2011-0735
Mitre link : CVE-2011-0735
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
adobe
- coldfusion