Weak ACLs in Adobe ColdFusion Allow Privilege Escalation

A newly disclosed vulnerability in Adobe ColdFusion could be exploited by unprivileged users for the execution of arbitrary code with SYSTEM privileges.
The popular commercial web-application development platform uses the CFML scripting language and is mainly used for the creation of data-driven websites.
read moreSecurityWeek RSS FeedRead More