Loading
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.
Use CWE-434, Adobe vendor hub and Coldfusion product page to widen CVE-2018-15961 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2026-27304, CVE-2026-27305 and CVE-2026-27306 for nearby disclosures in the same product family.