Anonymous users are able to upload files through a POST request to the C:/Windows/Temp folder on the server. The websites are the latest wordpress (4.4.1) running on a Windows 10 Server, IIS8, and PHP 5.6. How can files from anonymous users posting/uploading be blocked?
Block anonymous users from uploading files to Windows/temp on WordPress website
