https://unaaldia.hispasec.com/2007/02/vulnerabilidades-de-cross-site-scripting-en-coldfusion-mx.html