CVE-2008-6617

Name of the Vulnerable Software and Affected Versions SiteXS CMS version 0.1.1

Description The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the images/ directory via the adm/visual/upload.php script, and then accessing the uploaded file directly.

Recommendations For SiteXS CMS version 0.1.1, consider restricting or disabling the file upload functionality in adm/visual/upload.php until a proper fix is available, and ensure that only authorized users can upload files to prevent exploitation.