Name of the Vulnerable Software and Affected Versions:

IdeaCMS versions up to 1.6

Description:

A critical vulnerability was found in IdeaCMS, affecting the `saveUpload` function. This vulnerability allows for unrestricted upload and can be exploited remotely. The exploit has been disclosed to the public and may be used.

Recommendations:

For IdeaCMS versions up to 1.6, consider disabling the `saveUpload` function as a temporary workaround until a patch is available. Restrict access to the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.