Unrated severityNVD Advisory· Published Mar 25, 2009· Updated Jun 16, 2026
CVE-2008-6518
CVE-2008-6518
Description
Unrestricted file upload vulnerability in the profile feature in VidiScript allows registered remote authenticated users to execute arbitrary code by uploading a PHP file as an Avatar, then accessing the avatar via a direct request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:vidiscript:vidiscript:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:vidiscript:vidiscript:-:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.