Calum Power

**Name of the Vulnerable Software and Affected Versions** phpShop versions 0.7.1 and earlier **Description** The issue allows remote attackers to execute arbitrary PHP code by modifying the `base dir` parameter to reference a URL on a remote web server that contains phpshop.cfg. This is achieved through a remote file inclusion vulnerability in the index.php file. **Recommendations** For phpShop versions 0.7.1 and earlier, avoid using the `base dir` parameter to reference external URLs until a fix is available. As a temporary workaround, consider restricting access to the index.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Phorum versions prior to 3.4.6 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `hide email` parameter in the register.php file. **Recommendations** For versions prior to 3.4.6, update to version 3.4.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the register.php file or disabling the `hide email` parameter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Phorum versions 3.4.5 and earlier **Description** The issue allows remote attackers to inject arbitrary HTML or web script. This is achieved through multiple vectors, including the `phorum check xss` function in common.php, the `EditError` variable in profile.php, and the `Error` variable in login.php. **Recommendations** For Phorum versions 3.4.5 and earlier, consider disabling the `phorum check xss` function in common.php, restricting access to the `EditError` variable in profile.php, and limiting the use of the `Error` variable in login.php until a fix is available.