CVE-2006-4922

Name of the Vulnerable Software and Affected Versions Site@School versions 2.4.02 and earlier

Description The issue concerns an unrestricted file upload vulnerability. This vulnerability allows remote attackers to upload and execute arbitrary files with executable extensions.

Recommendations For versions 2.4.02 and earlier, consider restricting access to the starnet/editors/htmlarea/popups/images.php file until a patch is available. As a temporary workaround, disable the execution of files with executable extensions in the affected directory to minimize the risk of exploitation.