CVE-2008-4878

Name of the Vulnerable Software and Affected Versions WebCards version 1.3

Description The issue concerns an unrestricted file upload vulnerability in the "Add Image Macro" feature. This allows remote authenticated administrators to execute arbitrary code by uploading a file with an executable extension and then accessing it via a direct request to the uploaded file.

Recommendations For WebCards version 1.3, consider disabling the "Add Image Macro" feature until a patch is available to prevent exploitation. Restrict access to file uploads to minimize the risk of arbitrary code execution.