CVE-2007-1129

Name of the Vulnerable Software and Affected Versions MTCMS version 3.2

Description The issue allows remote attackers to upload and execute files due to unrestricted file upload vulnerabilities. This can be achieved via an avatar upload in an add down action or an add link action.

Recommendations For MTCMS version 3.2, consider restricting or disabling the file upload functionality in the add down and add link actions until a patch is available. Additionally, restrict access to the affected areas to minimize the risk of exploitation.