2 matches found
CVE-2010-1293
Cross-site scripting XSS vulnerability in the Administrator page in Adobe ColdFusion 8.0, 8.0.1, and 9.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2010-1293
Adobe ColdFusion CVE-2010-1293 is an XSS vulnerability affecting the Admin page in ColdFusion 8.0, 8.0.1, and 9.0. The issue arises from improper sanitization in the administrative interface, notably input to cfadminUserId on /CFIDE/administrator/login.cfm when Separate user name and password aut...