CVE-2008-6751

Name of the Vulnerable Software and Affected Versions: ReVou Micro Blogging TClone plugin (affected versions not specified)

Description: The issue concerns an unrestricted file upload vulnerability. This allows remote attackers to execute arbitrary code by uploading a file with an executable extension and then accessing it directly. The vulnerability is specifically in the index.php file of the TClone plugin.

Recommendations: For the TClone plugin, consider disabling the file upload functionality in index.php until a patch is available to prevent remote attackers from executing arbitrary code. Restrict access to the settings/my photo directory to minimize the risk of exploitation. Avoid using the file upload feature in the TClone plugin until the issue is resolved.