Claudio Criscione

**Name of the Vulnerable Software and Affected Versions** VMware vCenter Server version 4.1 before Update 1 **Description** The issue concerns the storage of log-on credentials in a configuration file by the vCenter Tomcat Management Application. This allows local users to gain privileges by reading the file, potentially leading to unauthorized access. **Recommendations** For VMware vCenter Server version 4.1 before Update 1, apply Update 1 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Citrix XenCenterWeb (affected versions not specified) **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities in sample code within the XenServer Resource Kit in Citrix XenCenterWeb. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via several parameters, including the `username` parameter to "config/edituser.php", the `location`, `sessionid`, and `vmname` parameters to "console.php", the `vmrefid` and `vmname` parameters to "forcerestart.php", and the `vmname` and `vmrefid` parameters to "forcesd.php". **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Citrix XenCenterWeb (affected versions not specified) **Description** A SQL injection issue exists in the login.php file of the XenServer Resource Kit sample code in Citrix XenCenterWeb, allowing remote attackers to execute arbitrary SQL commands via the `username` parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Citrix XenCenterWeb (affected versions not specified) **Description** The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities in sample code within the XenServer Resource Kit in Citrix XenCenterWeb. These vulnerabilities allow remote attackers to hijack the authentication of administrators. This can be achieved through requests that change the password via the `username` parameter to "config/changepw.php" or stop a virtual machine via the `stop vmname` parameter to "hardstopvm.php". **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Citrix XenCenterWeb (affected versions not specified) **Description** A static code injection issue exists in the sample code of the XenServer Resource Kit in Citrix XenCenterWeb. This allows remote attackers to inject arbitrary PHP code into include/config.ini.php via the `pool1` parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.