appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability

appRain CMF is prone to an arbitrary-file-upload vulnerability because the application fails to adequately sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files to the affected server this can result in arbitrary code execution within the context of the vulnerable application. appRain CMF 0.1.5 and prior versions are vulnerable.