CVE-2008-7064

Name of the Vulnerable Software and Affected Versions Quicksilver Forums versions 1.4.2 and earlier QSF Portal versions prior to 1.4.5

Description The issue allows remote attackers to include and execute arbitrary local files via a "" (backslash) in the lang parameter to "index.php". This bypasses a protection mechanism that only checks for "/" (forward slash). Attackers can upload and include PHP code in an avatar file.

Recommendations For Quicksilver Forums versions 1.4.2 and earlier, update to a version later than 1.4.2. For QSF Portal versions prior to 1.4.5, update to version 1.4.5 or later. As a temporary workaround, consider restricting access to the get lang function in global.php to minimize the risk of exploitation. Avoid using the lang parameter in the "index.php" endpoint until the issue is resolved.