Eddie Zaltsman

**Name of the Vulnerable Software and Affected Versions** SiberianCMS (affected versions not specified) **Description** The issue is related to improper handling of insufficient privileges, which can lead to security concerns. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SiberianCMS (affected versions not specified) **Description** The issue concerns improper access control, allowing an authorized user to disable a security feature over the network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SiberianCMS (affected versions not specified) **Description** A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method. This issue is related to the unrestricted upload of files with dangerous types. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SiberianCMS (affected versions not specified) **Description** The issue is related to improper neutralization of special elements used in an SQL command, also known as SQL injection, which can be exploited by an unauthenticated user. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.