This post is more than 2 years old.
A new security hotfix for ColdFusion was released today:
I'll use this as a reminder to folks to check out the Hack My CF service from Foundeo. It scans your ColdFusion servers, for free, and gives you a report of vulnerabilities. Most likely they already support this recent fix, and if not, they will soon.