CVE-2011-0733
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion before 9.0.1 CHF1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header in an id=- query to a .cfm file.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
adobe | coldfusion | * |
Common Weakness Enumeration