CVE-2009-1226

Name of the Vulnerable Software and Affected Versions Podcast Generator versions 1.1 and earlier

Description The issue allows remote attackers to delete arbitrary files due to improper access restriction to administrative functions. This can be achieved via the file parameter.

Recommendations For Podcast Generator versions 1.1 and earlier, restrict access to the core/admin/delete.php file to prevent unauthorized deletion of files. As a temporary workaround, consider disabling the delete functionality in the administrative interface until a proper fix is applied.