Xdh

**Name of the Vulnerable Software and Affected Versions** Advanced-Clan-Script (AVCX) versions 3.4 and earlier **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `content` parameter of the mcf.php file. **Recommendations** For Advanced-Clan-Script (AVCX) versions 3.4 and earlier, consider restricting access to the mcf.php file until a patch is available. As a temporary workaround, avoid using the `content` parameter in the affected file to minimize the risk of exploitation.