CVE-2017-11285

Name of the Vulnerable Software and Affected Versions Adobe ColdFusion versions prior to Update 5 for ColdFusion 2016 Adobe ColdFusion versions prior to Update 13 for ColdFusion 11

Description The issue is related to a cross-site scripting (XSS) problem.

Recommendations For Adobe ColdFusion 2016, update to a version later than Update 4. For Adobe ColdFusion 11, update to a version later than Update 12.