CVE-2014-0571 Information

Description

Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 9.0 before Update 13 9.0.1 before Update 12 9.0.2 before Update 7 10 before Update 14 and 11 before Update 2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://helpx.adobe.com/security/products/coldfusion/apsb14-23.html http://www.securitytracker.com/id/1031020