Silenz

**Name of the Vulnerable Software and Affected Versions** Vmist Downstat versions 1.8 and earlier **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `art` parameter to several PHP files, including "admin.php", "chart.php", "modes.php", and "stats.php". **Recommendations** For Vmist Downstat versions 1.8 and earlier, consider restricting access to the `admin.php`, `chart.php`, `modes.php`, and `stats.php` files until a fix is available. As a temporary workaround, avoid using the `art` parameter in these files to minimize the risk of exploitation.