CVE-2008-6806

Name of the Vulnerable Software and Affected Versions: 7Shop versions 1.1 and earlier

Description: The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the includes/imageupload.php script, and then accessing it via a direct request to the file in images/artikel/.

Recommendations: For versions 1.1 and earlier, consider disabling the image upload functionality in includes/imageupload.php until a patch is available to prevent remote attackers from executing arbitrary code. Restrict access to the images/artikel/ directory to minimize the risk of exploitation.