Unrated severityNVD Advisory· Published Aug 12, 2009· Updated Apr 23, 2026
CVE-2008-6944
CVE-2008-6944
Description
Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in cars_images/.
Affected products
1- cpe:2.3:a:scriptsfeed:auto_classifieds:-:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.