CVE-2008-6513

Name of the Vulnerable Software and Affected Versions Andy's PHP Knowledgebase (aphpkb) version 0.92.9

Description The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to saa.php, then accessing it via a link listed by authors.php.

Recommendations For version 0.92.9, consider restricting or disabling file uploads in saa.php to prevent exploitation until a fix is available. As a temporary workaround, restrict access to authors.php to minimize the risk of linking to maliciously uploaded files. Avoid using executable file extensions in uploads to saa.php until the issue is resolved.