CVE-2011-0733

Publication date

2011-02-01 17:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion before 9.0.1 CHF1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header in an id=- query to a .cfm file.