Description
An important vulnerability (CVE-2010-0185) has been identified in ColdFusion 9.0, which could allow access to collections created by the Solr Service to be accessed from any external machine using a specific URL. By accessing the ColdFusion Solr collections, a user could search and index the information contained in the collections. Adobe has provided a solution to the reported vulnerability. It is recommended that users update their product installations using the instructions provided below.
Remediation
Disable external access to the Solr collections.
References
Related Vulnerabilities
WordPress Plugin Custom Background 'uploadify.php' Arbitrary File Upload (1.01)
WordPress Plugin Google Analytics Opt-Out Cross-Site Scripting (2.3.4)
WordPress Plugin PDF Embedder Security Bypass (4.4)
WordPress Plugin Ultimate Reviews PHP Object Injection (2.0.18)
WordPress Plugin Survey Maker-Best WordPress Survey Cross-Site Scripting (2.0.6)