CVE-2009-1091

Name of the Vulnerable Software and Affected Versions Rapidleech versions rev.36 and earlier

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the uploaded parameter in the "upload.php" file.

Recommendations For Rapidleech versions rev.36 and earlier, update to a version later than rev.36 to resolve the issue. As a temporary workaround, consider restricting access to the upload.php file to minimize the risk of exploitation. Avoid using the uploaded parameter in the upload.php file until the issue is resolved.