Description
ColdFusion allows an unauthenticated user to upload arbitrary files. An attacker can exploit it to achieve remote code execution.
Remediation
Upgrade to the latest version of ColdFusion
References
Related Vulnerabilities
WordPress Plugin Wallable-Social Networking Arbitrary File Upload (1.1)
WordPress Plugin Users Ultra Membership Arbitrary File Upload (1.5.58)
WordPress Plugin Vmax Project Manager Arbitrary File Upload (1.1)
WordPress Plugin Slider Revolution Responsive Arbitrary File Upload (3.0.95)
WordPress Plugin Auctions 'upload.php' Arbitrary File Upload (2.0.1.3)