Bruno Kovacs

**Name of the Vulnerable Software and Affected Versions** Spyce - Python Server Pages (PSP) version 2.1.3 **Description** The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved through various parameters in different API endpoints, including: the `url` or `type` parameter to "docs/examples/redirect.spy"; the `x` parameter to "docs/examples/handlervalidate.spy"; the `name` parameter to "spyce/examples/request.spy"; the `Name` parameter to "spyce/examples/getpost.spy"; the `mytextarea`, `mypass`, or an empty parameter to "spyce/examples/formtag.spy"; the `newline` parameter to the default URI under "demos/chat/"; the `text1` parameter to "docs/examples/formintro.spy"; or the `mytext` or `mydate` parameter to "docs/examples/formtag.spy". **Recommendations** For Spyce - Python Server Pages (PSP) version 2.1.3, consider disabling the affected API endpoints until a patch is available. Restrict access to the parameters `url`, `type`, `x`, `name`, `Name`, `mytextarea`, `mypass`, `newline`, `text1`, `mytext`, and `mydate` in their respective endpoints to minimize the risk of exploitation. Avoid using these parameters in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Spyce - Python Server Pages (PSP) version 2.1.3 **Description** The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the `url` parameter. This can be exploited by providing a malicious URL to the vulnerable application. **Recommendations** For Spyce - Python Server Pages (PSP) version 2.1.3, consider validating and sanitizing the `url` parameter to prevent redirects to arbitrary web sites. As a temporary workaround, restrict access to the redirect functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Spyce - Python Server Pages (PSP) version 2.1.3 **Description** The issue allows remote attackers to obtain sensitive information via a direct request for "spyce/examples/automaton.spy", which reveals the path in an error message. **Recommendations** For version 2.1.3, consider restricting access to the "spyce/examples/automaton.spy" endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.