Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 18 and 11 before Update 7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2015-8052.Referenceshttp://www.securityfocus.com/bid/77625https://helpx.adobe.com/security/products/coldfusion/apsb15-29.htmlhttp://www.securitytracker.com/id/1034211
