CVE-2008-2348

Name of the Vulnerable Software and Affected Versions: MeltingIce File System version 1.0

Description: The issue allows remote attackers to bypass application authentication, create new user accounts, and exceed application quotas. This can be achieved by sending a direct request to the "admin/adduser.php" endpoint.

Recommendations: For MeltingIce File System version 1.0, consider restricting access to the "admin/adduser.php" endpoint to prevent unauthorized account creation and quota exceedance. As a temporary workaround, disabling the account creation functionality until a proper fix is available can help mitigate the risk.