Crash_Over_Ride

**Name of the Vulnerable Software and Affected Versions** Indexu version 5.0.1 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `admin template path` parameter to various admin scripts. This affects multiple scripts, including but not limited to, `app change email.php`, `app change pwd.php`, `app mod rewrite.php`, and others. The estimated number of potentially affected devices worldwide is not specified. There is no information provided about real-world incidents where this issue was exploited. **Recommendations** For Indexu version 5.0.1, consider disabling the `admin template path` parameter in the affected admin scripts until a patch is available. Restrict access to these scripts to minimize the risk of exploitation. Avoid using the `admin template path` parameter in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DreamAccount version 3.1 **Description** A remote file inclusion issue in the admin/index.php file allows remote attackers to execute arbitrary PHP code via a URL in the `path` parameter. **Recommendations** For DreamAccount version 3.1, consider restricting access to the admin/index.php file until a patch is available. As a temporary workaround, avoid using the `path` parameter in the affected file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mambo Gallery Manager (MGM) versions 0.95r2 and earlier **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `mosConfig absolute path` parameter in the administrator/components/com mgm/help.mgm.php file. **Recommendations** For Mambo Gallery Manager (MGM) versions 0.95r2 and earlier, avoid using the `mosConfig absolute path` parameter in the affected API endpoint until the issue is resolved.

PHP remote file inclusion vulnerabilities in plume cms 1.0.4 allow remote attackers to execute arbitrary PHP code via a URL in the PX config[manager path] parameter to (1) index.php, (2) rss.php, or (3) search.php, a different set of vectors and versions than CVE-2006-2645 and CVE-2006-0725.

**Name of the Vulnerable Software and Affected Versions** QBoard version 1.1 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `qb path` parameter to various PHP files, including "index.php", "about.php", "contact.php", "delete.php", "faq.php", "features.php", and "history.php". **Recommendations** For QBoard version 1.1, consider restricting access to the `qb path` parameter in the affected API endpoints until a patch is available. As a temporary workaround, avoid using the `qb path` parameter in the affected PHP files, such as "index.php", "about.php", "contact.php", "delete.php", "faq.php", "features.php", and "history.php", to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SmartSiteCMS versions 1.0 and earlier **Description** The issue allows remote attackers to execute arbitrary PHP code when the register globals setting is enabled. This is achieved by exploiting the `root` parameter in various PHP files, including "comment.php", "admin/comedit.php", "admin/test.php", "admin/index.php", and "admin/include/inc adminfoot.php". **Recommendations** For SmartSiteCMS versions 1.0 and earlier, disable the register globals setting to prevent exploitation. Additionally, consider restricting access to the vulnerable PHP files until a fix is available. As a temporary workaround, avoid using the `root` parameter in the affected files.