Ircrash

**Name of the Vulnerable Software and Affected Versions** minb version 0.1.0 **Description** The issue allows remote attackers to execute arbitrary PHP code via the `quotes to edit` parameter in the include/modules/top/1-random quote.php file. This could potentially lead to unrestricted file upload as a consequence of code execution. **Recommendations** For minb version 0.1.0, avoid using the `quotes to edit` parameter in the affected file until a fix is available. As a temporary workaround, consider restricting access to the include/modules/top/1-random quote.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** devalcms version 1.4a **Description** The issue allows remote attackers to execute arbitrary PHP code via the HTTP Referer header. This is achieved by specifying a target file in the `gv folder data` parameter. The exploitation can be demonstrated by modifying the `modules/tool/url2header.php` file. **Recommendations** For devalcms version 1.4a, consider restricting access to the `modules/tool/hitcounter.php` file until a patch is available. As a temporary workaround, avoid using the `gv folder data` parameter in the affected module to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** devalcms version 1.4a **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the `currentpath` parameter in the "index.php" file. **Recommendations** For devalcms version 1.4a, avoid using the `currentpath` parameter in the index.php file until a fix is available. As a temporary workaround, consider restricting access to the index.php file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Ovidentia version 6.6.5 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `item` parameter in a contact modify action in the `index.php` file. Recommendations: For Ovidentia version 6.6.5, consider restricting access to the `index.php` file or disabling the contact modify action until a patch is available. Avoid using the `item` parameter in the affected action to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Stash version 1.0.3 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `username` parameter to "admin/library/authenticate.php" and the `download` parameter to "downloadmp3.php", when magic quotes gpc is disabled. **Recommendations** For Stash version 1.0.3, consider disabling the `username` and `download` parameters in the respective API endpoints until a patch is available. Restrict access to "admin/library/authenticate.php" and "downloadmp3.php" to minimize the risk of exploitation. Avoid using the `username` and `download` parameters in the affected endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** DeeEmm CMS (DMCMS) version 0.7.4 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `page` parameter in the "index.php" file. **Recommendations** For version 0.7.4, update to a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** DeeEmm CMS (DMCMS) version 0.7.4 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `language dir` parameter in the user language.php file. **Recommendations** For DeeEmm CMS (DMCMS) version 0.7.4, avoid using the `language dir` parameter in the user language.php file until the issue is resolved. Consider restricting access to the user language.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** UNAK-CMS version 1.5.5 **Description** The issue is related to an absolute path traversal vulnerability. This allows remote attackers to include and execute arbitrary local files via a full pathname in the `Dirroot` parameter. **Recommendations** For UNAK-CMS version 1.5.5, avoid using the `Dirroot` parameter in the connector.php file until a fix is available. As a temporary workaround, consider restricting access to the connector.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Battle.net Clan Script version 1.5.2 **Description** The issue concerns SQL injection vulnerabilities in the index.php file. Remote attackers can execute arbitrary SQL commands by manipulating the `showmember` parameter in a members action and the `thread` parameter in a board action. **Recommendations** For Battle.net Clan Script version 1.5.2, consider restricting access to the `index.php` file until a patch is available. As a temporary workaround, avoid using the `showmember` parameter in members actions and the `thread` parameter in board actions to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** nzFotolog version 0.4.1 **Description** The issue allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the `action file` parameter in the "index.php" file. **Recommendations** For nzFotolog version 0.4.1, consider restricting access to the `action file` parameter in the "index.php" file to prevent directory traversal attacks until a patch is available.

**Name of the Vulnerable Software and Affected Versions** CMScout version 2.05 **Description** A directory traversal issue exists in common.php, allowing remote attackers to include and execute arbitrary local files via directory traversal sequences in the `bit` parameter. This can be exploited by uploading a malicious file, such as a .jpg file containing PHP sequences, to the avatar/ directory. **Recommendations** For CMScout version 2.05, consider restricting access to the `common.php` file and the `avatar/` directory to minimize the risk of exploitation. Avoid using the `bit` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ATutor versions 1.6.1 pl1 and earlier **Description** A remote file inclusion issue in the tools/packages/import.php file allows remote authenticated administrators to execute arbitrary PHP code via a URL in the `type` parameter. **Recommendations** For ATutor versions 1.6.1 pl1 and earlier, consider restricting access to the import.php file until a patch is available. As a temporary workaround, avoid using the `type` parameter in the affected import.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Virtual Design Studio vlbook version 1.21 **Description** A directory traversal issue exists, allowing remote attackers to include and execute arbitrary local files. This is achieved by using a .. (dot dot) in the `l` parameter. **Recommendations** For Virtual Design Studio vlbook version 1.21, consider restricting access to the `include/global.inc.php` file to minimize the risk of exploitation. As a temporary workaround, avoid using the `l` parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Siteman version 2.0.x2 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `module` parameter. This injection can lead to the leakage of the path in an error message. **Recommendations** For Siteman version 2.0.x2, consider restricting access to the `module` parameter in the index.php file to minimize the risk of exploitation. Avoid using the `module` parameter in a way that could allow arbitrary web script or HTML injection until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Siteman version 2.0.x2 **Description** A directory traversal issue exists, allowing remote authenticated administrators to include and execute arbitrary local files. This is achieved by using a .. (dot dot) in the `module` parameter of the index.php file. **Recommendations** For Siteman version 2.0.x2, consider restricting access to the `module` parameter in the index.php file to prevent exploitation until a patch is available. As a temporary workaround, limit the ability of remote authenticated administrators to include and execute local files.

**Name of the Vulnerable Software and Affected Versions** ActualAnalyzer Lite version 2.78 **Description** The issue allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the `style` parameter of the admin.php file. **Recommendations** For version 2.78, consider restricting access to the admin.php file until a patch is available, and avoid using the `style` parameter with untrusted input to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Virtual Design Studio vlbook version 1.21 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `l` parameter in index.php. This enables attackers to execute malicious scripts on the victim's browser. **Recommendations** For Virtual Design Studio vlbook version 1.21, consider restricting access to the `l` parameter in the index.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the `l` parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FaScript FaPhoto version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `id` parameter in the "show.php" file when magic quotes gpc is disabled. **Recommendations** For FaScript FaPhoto version 1.0, consider disabling the use of the `id` parameter in the "show.php" file or enabling magic quotes gpc to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Neat weblog version 0.2 **Description** The issue allows remote attackers to execute arbitrary SQL commands, likely related to the `showArticle` function. This is achieved by exploiting the `articleId` parameter in a 'show' action. **Recommendations** For Neat weblog version 0.2, consider restricting access to the `articleId` parameter in the 'show' action until a patch is available. As a temporary workaround, avoid using the `articleId` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Affiliate Market (affmarket) version 0.1 BETA **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in the "shop/detail.php" endpoint. **Recommendations** For Affiliate Market (affmarket) version 0.1 BETA, consider restricting access to the `id` parameter in the "shop/detail.php" endpoint until a patch is available. Avoid using the `id` parameter in the affected endpoint to minimize the risk of exploitation.