Attila Gerendi

**Name of the Vulnerable Software and Affected Versions** DeluxeBB version 1.08 and possibly earlier **Description** The issue allows remote attackers to bypass authentication by providing an arbitrary username in the `membercookie` cookie parameter. This is related to the `pm.php` file, also known as the PM system. **Recommendations** For DeluxeBB version 1.08 and possibly earlier, consider restricting access to the `pm.php` file until a patch is available. As a temporary workaround, avoid using the `membercookie` cookie parameter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** DeluxeBB versions 1.08 and earlier **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the `subject` parameter, also known as the topic title field, in the newpost.php file. **Recommendations** For DeluxeBB versions 1.08 and earlier, avoid using the `subject` parameter in the newpost.php file until the issue is resolved. As a temporary workaround, consider restricting user input for the topic title field to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** DeluxeBB versions 1.08 and earlier **Description** The issue allows remote attackers to gain privileges by exploiting the use of cookies that include the MD5 hash of a password. This can be achieved through sniffing or cross-site scripting (XSS) and conducting password guessing attacks. **Recommendations** For DeluxeBB versions 1.08 and earlier, consider updating the cookie handling mechanism to avoid using the MD5 hash of passwords, and implement additional security measures to prevent password guessing attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** EJ3 TOPo version 2.2.178 **Description** The issue allows remote attackers to overwrite existing entries and establish new passwords for the overwritten entries via a URL with a modified entry ID. **Recommendations** For version 2.2.178, consider restricting access to the index.php file until a patch is available. As a temporary workaround, avoid using modified entry IDs in URLs to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** EJ3 TOPo version 2.2.178 **Description** The issue allows context-dependent attackers to obtain entry passwords via log files, referrers, or other vectors because the password is included in cleartext in the ID field to "index.php". **Recommendations** For version 2.2.178, consider restricting access to the "index.php" endpoint until a fix is available to prevent the exposure of passwords in cleartext.

**Name of the Vulnerable Software and Affected Versions** Enterprise Heart Enterprise Connector version 1.0.2 **Description** The issue allows remote attackers to execute arbitrary SQL commands and bypass login authentication. This is achieved via the `loginid` parameter in the main.php file. **Recommendations** For Enterprise Heart Enterprise Connector version 1.0.2, avoid using the `loginid` parameter in the main.php file until the issue is resolved. As a temporary workaround, consider restricting access to the main.php file to minimize the risk of exploitation.