CVE-2011-0734

The CVE-2011-0734 entry describes a Cross-site scripting (XSS) vulnerability in Adobe ColdFusion prior to 9.0.1 CHF1, allowing remote attackers to inject arbitrary web script or HTML via an id parameter containing a JavaScript onLoad event handler for a BODY element (a “tag body” attack). Affecte...