i-HTTPD is a web server for Windows, implementing Server Side Includes (SSI). i-HTTPD contains "File Upload BBS". When "File Upload BBS" is activated, a user can upload files on the server, and i-HTTPD processes SSI directives in the uploaded files (CWE-97).
An arbitrary command may be executed on the server.
Do not use i-HTTPD and "File Upload BBS"
i-HTTPD is no longer being developed or maintained. It is recommended to stop using i-HTTPD and "File Upload BBS".
## Products Affected