CVE-2008-4767

Name of the Vulnerable Software and Affected Versions PHP-Nuke (affected versions not specified)

Description The issue allows remote attackers to potentially execute arbitrary code by uploading files with certain extensions, including .htm, .html, or .txt, and then accessing them directly. However, it is unclear how the upload of .html or .txt files could lead to arbitrary code execution, as this might be a legitimate functionality.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.