CVE-2008-6518
CVE-2008-6518 describes an unrestricted file upload vulnerability in the profile feature of VidiScript. The issue allows registered, remote authenticated users to execute arbitrary code by uploading a PHP file as an Avatar and then accessing it via a direct request. The core vulnerability is the ...