Byalbayx

**Name of the Vulnerable Software and Affected Versions** Digital Interchange Document Library version 1.0.1 **Description** The issue concerns a lack of administrative authentication in the `admin/save user.asp` file, allowing remote attackers to access or modify the administrator's credentials. **Recommendations** For Digital Interchange Document Library version 1.0.1, consider implementing proper administrative authentication mechanisms to restrict access to sensitive areas like `admin/save user.asp`. As a temporary workaround, restrict access to the `admin/save user.asp` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Omilen Photo Gallery (com omphotogallery) version Beta 0.5 for Joomla! **Description** The issue allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the `controller` parameter to "index.php". **Recommendations** For Omilen Photo Gallery (com omphotogallery) version Beta 0.5, consider restricting access to the "index.php" endpoint until a patch is available, and avoid using directory traversal sequences in the `controller` parameter to prevent exploitation.

Name of the Vulnerable Software and Affected Versions: Joomla! component com agora version 3.0.0b Description: A directory traversal issue in the com agora component allows remote attackers to include and execute arbitrary local files. This is achieved by using directory traversal sequences in the `action` parameter to the avatars page, which is accessible through the "index.php" endpoint. Recommendations: For version 3.0.0b, consider restricting access to the avatars page or disabling the com agora component until a fix is available. Avoid using the `action` parameter in the avatars page endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** ASP Football Pool version 2.3 **Description** The issue allows remote attackers to download the database file via a direct request for `NFL.mdb` due to insufficient access control. This is because sensitive information is stored under the web root. **Recommendations** For ASP Football Pool version 2.3, consider restricting access to the `NFL.mdb` file to prevent unauthorized downloads until a proper fix is applied. Additionally, review and implement proper access controls for sensitive information stored under the web root.

**Name of the Vulnerable Software and Affected Versions** casinobase (com casinobase) version 0.3.1 casino blackjack (com casino blackjack) version 0.3.1 casino videopoker (com casino videopoker) version 0.3.1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `Itemid` parameter to "index.php". **Recommendations** For casinobase (com casinobase) version 0.3.1, avoid using the `Itemid` parameter in the "index.php" endpoint until the issue is resolved. For casino blackjack (com casino blackjack) version 0.3.1, avoid using the `Itemid` parameter in the "index.php" endpoint until the issue is resolved. For casino videopoker (com casino videopoker) version 0.3.1, avoid using the `Itemid` parameter in the "index.php" endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Zip Store Chat versions 4.0 through 5.0 **Description** The issue concerns SQL injection vulnerabilities in the admin/index.asp file. Remote attackers can execute arbitrary SQL commands by manipulating the `login` and `senha` parameters. **Recommendations** For versions 4.0 through 5.0, update to a version that contains a fix for this issue to prevent SQL injection attacks.

**Name of the Vulnerable Software and Affected Versions** JoomlaPraise Projectfork (com projectfork) component version 2.0.10 for Joomla! **Description** The issue allows remote attackers to read arbitrary files via directory traversal sequences in the `section` parameter to "index.php". **Recommendations** For version 2.0.10, consider restricting access to the `index.php` endpoint until a patch is available. As a temporary workaround, avoid using the `section` parameter in the affected endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** fipsCMS Light version 2.1 **Description** The issue allows remote attackers to download the database file and obtain sensitive information via a direct request for ` fipsdb/db.mdb`. This is due to insufficient access control, as sensitive information is stored under the web root. **Recommendations** For fipsCMS Light version 2.1, consider restricting access to the ` fipsdb/db.mdb` file to minimize the risk of exploitation. As a temporary workaround, restrict access to the ` fipsdb` directory until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vlad Titarenko ASP VT Auth version 1.0 **Description** The issue allows remote attackers to download the database file and obtain usernames and passwords via a direct request for a specific file, zHk8dEes3.txt, due to insufficient access control. **Recommendations** For version 1.0, restrict access to sensitive files, such as zHk8dEes3.txt, to prevent remote attackers from downloading the database file. Consider implementing proper access controls to protect sensitive information.

Name of the Vulnerable Software and Affected Versions: phpBugTracker version 1.0.3 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `password` parameter in the "index.php" endpoint. Recommendations: For phpBugTracker version 1.0.3, consider restricting access to the `password` parameter in the "index.php" endpoint until a patch is available. As a temporary workaround, avoid using the `password` parameter to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: exJune Office Message System version 1 Description: The issue is related to improper access restriction to certain API endpoints, specifically "configure.asp" and "addmessage2.asp", allowing remote attackers to gain privileges via a direct request. Recommendations: For exJune Office Message System version 1, restrict access to the "configure.asp" and "addmessage2.asp" endpoints to prevent unauthorized privilege escalation.

Name of the Vulnerable Software and Affected Versions: Catviz version 0.4.0 beta 1 Description: The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the `userman form` and `webpages form` parameters in the index.php file. Recommendations: For Catviz version 0.4.0 beta 1, consider restricting access to the index.php file until a patch is available, and avoid using the `userman form` and `webpages form` parameters in the affected API endpoint.

Name of the Vulnerable Software and Affected Versions: Catviz version 0.4.0 Beta 1 Description: The issue allows remote attackers to read arbitrary files due to multiple directory traversal vulnerabilities in the index.php file. This is achieved by using a .. (dot dot) in the `webpages form` or `userman form` parameters. Recommendations: For Catviz version 0.4.0 Beta 1, consider restricting access to the index.php file until a patch is available, and avoid using the `webpages form` and `userman form` parameters with unvalidated input.

Name of the Vulnerable Software and Affected Versions: Web File Explorer version 3.1 Description: The issue allows remote attackers to download a database via a direct request for `data/db.mdb` due to insufficient access control. This is because sensitive information is stored under the web root. Recommendations: For Web File Explorer version 3.1, consider restricting access to the `data/db.mdb` file to minimize the risk of exploitation. As a temporary workaround, restrict access to the vulnerable directory until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Whole Hog Password Protect: Enhanced versions 1.x **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `uid` parameter (also known as the Username field) or the `pwd` parameter (also known as the Password field) in the admin/login submit.php file. **Recommendations** For Whole Hog Password Protect: Enhanced version 1.x, consider restricting access to the admin/login submit.php file until a fix is available, and avoid using the `uid` and `pwd` parameters in this context to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Whole Hog Ware Support versions 1.x **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `uid` parameter (also known as the Username field) or the `pwd` parameter (also known as the Password field) in the admin/login submit.php file. **Recommendations** For Whole Hog Ware Support version 1.x, consider restricting access to the admin/login submit.php file until a fix is available. As a temporary workaround, avoid using the `uid` and `pwd` parameters in the affected file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WarHound Walking Club (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `username` and `password` parameters in the "login.aspx" endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Enthrallweb eReservations (affected versions not specified) **Description** The issue concerns SQL injection vulnerabilities in the default.asp file of Enthrallweb eReservations. Remote attackers can execute arbitrary SQL commands by exploiting the `Login` parameter (also known as the username field) or the `Password` parameter (also known as the password field) in the default.asp file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.