CVE-2008-6785

Name of the Vulnerable Software and Affected Versions: Mini File Host version 1.5

Description: The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension and then accessing it via a direct request to the file in an unspecified directory. This can be demonstrated by creating a name.php file.

Recommendations: For Mini File Host version 1.5, consider restricting or disabling file uploads until a patch is available to prevent the execution of arbitrary code. As a temporary workaround, restrict access to directories where uploaded files are stored to minimize the risk of exploitation.