CVE-2006-5918

Name of the Vulnerable Software and Affected Versions RapidKill (aka PHP Rapid Kill) versions 5.7 Pro and certain other versions

Description The issue allows remote attackers to upload and execute arbitrary PHP scripts via the Link to Download field. It is possible that the field value is restricted to files on specific public web sites.

Recommendations For RapidKill (aka PHP Rapid Kill) versions 5.7 Pro and certain other versions, restrict access to the Link to Download field to prevent uploading and executing arbitrary PHP scripts until a fix is available. Consider implementing validation and sanitization for the Link to Download field to minimize the risk of exploitation.