Codebreak

**Name of the Vulnerable Software and Affected Versions** Michelle's L2J Dropcalc versions 4 and earlier **Description** The issue allows remote authenticated users to execute arbitrary SQL commands. This is achieved via the `itemid` parameter in the "i-search.php" endpoint. **Recommendations** For Michelle's L2J Dropcalc versions 4 and earlier, consider restricting access to the `i-search.php` endpoint until a patch is available. As a temporary workaround, avoid using the `itemid` parameter in the affected endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** L2J Statistik Script versions 0.09 and earlier **Description** The issue allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the `page` parameter. This can be achieved when `register globals` is enabled and `magic quotes` is disabled. Attackers can inject PHP sequences into an Apache HTTP Server log file, which is then included by index.php. **Recommendations** For L2J Statistik Script versions 0.09 and earlier, consider disabling the `register globals` setting and enabling `magic quotes` to prevent exploitation. Additionally, restrict access to the `index.php` file and avoid using the `page` parameter until a fix is available. As a temporary workaround, consider restricting the inclusion of local files by `index.php` to minimize the risk of exploitation.