CVE-2008-6287

Name of the Vulnerable Software and Affected Versions: Broadcast Machine version 0.1

Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the baseDir parameter to various PHP files, including MySQLController.php, SQLController.php, SetupController.php, VideoController.php, and ViewController.php in the controllers/ directory.

Recommendations: For Broadcast Machine version 0.1, consider restricting access to the baseDir parameter in the affected PHP files to minimize the risk of exploitation. Avoid using the baseDir parameter in the API endpoints related to these files until the issue is resolved.