CVE-2008-0805
CVE-2008-0805 affects PHPizabi 0.848b C1 HFP1, where image.php permits unrestricted file uploads. An attacker can upload a file with an executable extension from the event page and access it via system/cache/pictures to achieve remote code execution.