The Expression Evaluator sample application in ColdFusion allows remote malicious users to read or delete files on the server via exprcalc.cfm, which does not restrict access to the server properly.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
allaire coldfusion server 4.0 |