CVE-2008-5966

Name of the Vulnerable Software and Affected Versions Globsy versions 1.0 and earlier

Description The issue allows remote attackers to create or overwrite arbitrary files. This is achieved by specifying a filename in the file parameter and providing file contents in the data parameter in the globsy edit.php file.

Recommendations For Globsy versions 1.0 and earlier, consider restricting access to the globsy edit.php file until a fix is available, and avoid using the file and data parameters in this file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.