Bingza

**Name of the Vulnerable Software and Affected Versions** BigACE version 2.4 **Description** The issue allows remote attackers to execute arbitrary PHP code when register globals is enabled. This can be achieved via a URL in the `GLOBALS[ BIGACE][DIR][addon]` parameter to files such as "addon/smarty/plugins/function.captcha.php" and "system/classes/sql/AdoDBConnection.php", and the `GLOBALS[ BIGACE][DIR][admin]` parameter to files like "item information.php", "jstree.php" in "system/application/util/", and "system/admin/plugins/menu/menuTree/plugin.php". **Recommendations** For BigACE version 2.4, consider disabling the register globals setting to prevent exploitation. Additionally, restrict access to the vulnerable parameters `GLOBALS[ BIGACE][DIR][addon]` and `GLOBALS[ BIGACE][DIR][admin]` until a patch is available. As a temporary workaround, avoid using these parameters in the affected API endpoints.

**Name of the Vulnerable Software and Affected Versions** phpFaber URLInn version 2.0.5 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `dir ws` parameter in the `urlinn includes/config.php` file. **Recommendations** For phpFaber URLInn version 2.0.5, consider restricting access to the `urlinn includes/config.php` file to minimize the risk of exploitation. As a temporary workaround, avoid using the `dir ws` parameter in the affected file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHP-Nuke Platinum version 7.6.b.5 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `nuke bb root path` parameter in the modules/Forums/favorites.php file. **Recommendations** For PHP-Nuke Platinum version 7.6.b.5, avoid using the `nuke bb root path` parameter in the affected file until the issue is resolved. Consider restricting access to the favorites.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SocketMail version 2.2.8 **Description** A remote file inclusion issue in the content/fnc-readmail3.php file of SocketMail allows remote attackers to execute arbitrary PHP code via a URL in the ` SOCKETMAIL ROOT` parameter. **Recommendations** For SocketMail version 2.2.8, consider restricting access to the content/fnc-readmail3.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the ` SOCKETMAIL ROOT` parameter in the affected file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: NuSEO PHP Enterprise version 1.6 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the `nuseo dir` parameter when `register globals` is enabled. This is a result of a remote file inclusion vulnerability in the admin/nuseo admin d.php file. Recommendations: For NuSEO PHP Enterprise version 1.6, consider disabling the `register globals` setting to prevent exploitation. Additionally, restrict access to the admin/nuseo admin d.php file and avoid using the `nuseo dir` parameter in URLs until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DFD Cart versions 1.1.4 and earlier **Description** The issue allows remote attackers to execute arbitrary PHP code when register globals is enabled. This can be achieved via a URL in the `set depth` parameter to specific PHP files, including (1) `app.lib/product.control/core.php/product.control.config.php`, or (2) `customer.browse.list.php` or (3) `customer.browse.search.php` in `app.lib/product.control/core.php/customer.area/`. **Recommendations** For DFD Cart versions 1.1.4 and earlier, consider disabling the `register globals` setting to prevent exploitation. Additionally, restrict access to the vulnerable PHP files, specifically `app.lib/product.control/core.php/product.control.config.php`, `customer.browse.list.php`, and `customer.browse.search.php`, until a patch is available. Avoid using the `set depth` parameter in the affected API endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Streamline PHP Media Server version 1.0-beta4 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `sl theme unix path` parameter to various PHP files, including 'admin footer.php', 'info footer.php', 'theme footer.php', 'browse footer.php', 'account footer.php', and 'search footer.php' in 'core/theme/includes/'. This vulnerability is only present if the administrator does not follow installation instructions regarding the requirement for .htaccess Limit support. **Recommendations** For Streamline PHP Media Server version 1.0-beta4, as a temporary workaround, consider restricting access to the `sl theme unix path` parameter in the affected PHP files until a patch is available. Ensure that the administrator follows the installation instructions about the requirement for .htaccess Limit support to mitigate the risk of exploitation.