Erne

**Name of the Vulnerable Software and Affected Versions** Jinzora version 2.6 **Description** The issue allows remote attackers to execute arbitrary PHP code. This is achieved via the `web root` parameter in the extras/mt.php file. **Recommendations** For Jinzora version 2.6, consider restricting access to the extras/mt.php file to minimize the risk of exploitation. Avoid using the `web root` parameter in the affected file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** lib/php/phphtmllib-2.5.4 maintain version 3.0.0-RC2 **Description** A remote file inclusion issue allows remote attackers to execute arbitrary PHP code via a URL in the `phphtmllib` parameter. This issue might be related to phpHtmlLib. It is noted that proper installations of maintain might not be affected since the `$phphtmllib` variable is set before being used. **Recommendations** For maintain version 3.0.0-RC2, ensure that the `$phphtmllib` variable is properly set in includes.inc before being used in example6.php to prevent exploitation. For lib/php/phphtmllib-2.5.4, consider restricting access to the example6.php file until a fix is available.

**Name of the Vulnerable Software and Affected Versions** Mambo versions 4.5.4 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `mosConfig absolute path` parameter in the htmltemplate.php file of the MOStlyCE component. **Recommendations** For Mambo version 4.5.4, consider restricting access to the `mosConfig absolute path` parameter in the htmltemplate.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Lodel version 0.7.3 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `home` parameter in the calcul-page.php file. **Recommendations** For Lodel version 0.7.3, update to a version that contains a fix for this issue to prevent remote attackers from executing arbitrary PHP code.

**Name of the Vulnerable Software and Affected Versions** Hitweb versions 3.0 **Description** The issue concerns remote file inclusion vulnerabilities in Hitweb 3.0, allowing remote attackers to execute arbitrary PHP code. This is achieved by providing a URL in the `REP CLASS` parameter to various PHP files, including "index.php", "arbo.php", "framepoint.php", "genpage.php", "lienvalider.php", "appreciation.php", "partenariat.php", "rechercher.php", "projet.php", "propoexample.php", "refererpoint.php", or "top50.php". However, it has been disputed by a third-party researcher, who claims that `REP CLASS` is initialized in an included file before being used. **Recommendations** For Hitweb version 3.0, as a temporary workaround, consider restricting access to the `REP CLASS` parameter in the affected PHP files until a patch is available. Additionally, restrict access to the affected API endpoints, such as "index.php", "arbo.php", "framepoint.php", "genpage.php", "lienvalider.php", "appreciation.php", "partenariat.php", "rechercher.php", "projet.php", "propoexample.php", "refererpoint.php", or "top50.php", to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WTools versions 0.0.1-ALPH **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `include path` parameter in the common.php file. **Recommendations** For WTools versions 0.0.1-ALPH, consider restricting access to the `common.php` file to minimize the risk of exploitation. Avoid using the `include path` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MyABraCaDaWeb version 1.0.3 **Description** The issue allows remote attackers to execute arbitrary PHP code when register globals is enabled. This can be achieved by providing a URL in the `base` parameter to API endpoints such as "index.php" or "pop.php". **Recommendations** For MyABraCaDaWeb version 1.0.3, consider disabling the register globals setting to prevent exploitation. Additionally, restrict access to the "index.php" and "pop.php" API endpoints until a fix is available. Avoid using the `base` parameter in these endpoints to minimize the risk of arbitrary PHP code execution.

**Name of the Vulnerable Software and Affected Versions** Fire Soft Board (FSB) versions RC3 and earlier **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `racine` parameter in the demarrage.php file. **Recommendations** For Fire Soft Board (FSB) versions RC3 and earlier, consider restricting access to the demarrage.php file until a patch is available. As a temporary workaround, avoid using the `racine` parameter in the affected demarrage.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** News Evolution version 3.0.3 **Description** The issue allows remote attackers to execute arbitrary PHP code via the ` NE[AbsPath]` parameter in specific PHP files, including `install.php` and `migrateNE2toNE3.php`. **Recommendations** For News Evolution version 3.0.3, consider restricting access to the ` NE[AbsPath]` parameter in the affected PHP files until a patch is available. Avoid using the ` NE[AbsPath]` parameter in the `install.php` and `migrateNE2toNE3.php` files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Stefan Ernst Newsscript (aka WM-News) version 0.5 beta **Description** The issue allows remote attackers to execute arbitrary PHP code. This can be achieved via a URL in the `ide` parameter in "article.php", or the `pwfile` parameter in "delete.php", "modify.php", "admin.php", or "modify go.php". **Recommendations** For Stefan Ernst Newsscript (aka WM-News) version 0.5 beta, consider disabling the `ide` parameter in "article.php" and the `pwfile` parameter in "delete.php", "modify.php", "admin.php", or "modify go.php" until a patch is available. Restrict access to these parameters to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Akarru Social BookMarking Engine versions 0.4.3.34 and earlier Akarru Social BookMarking Engine version 0.4.4.120 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `bm content` parameter in the akarru.gui/main content.php file. **Recommendations** For Akarru Social BookMarking Engine versions 0.4.3.34 and earlier, consider restricting access to the akarru.gui/main content.php file until a fix is available. For Akarru Social BookMarking Engine version 0.4.4.120, avoid using the `bm content` parameter in the affected file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Phorum versions 5.1.13 and earlier **Description** A remote file inclusion issue in common.php allows remote attackers to execute arbitrary PHP code via a URL in the `PHORUM[http path]` parameter. However, the vendor disputes this issue, stating that common.php checks if it is being called directly and has done so in all 5.x versions of Phorum. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.