Kacper

**Name of the Vulnerable Software and Affected Versions** Paolo Palmonari Photoracer plugin version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in the "viewimg.php" file. **Recommendations** For Paolo Palmonari Photoracer plugin version 1.0, consider restricting access to the "viewimg.php" file until a patch is available. Avoid using the `id` parameter in the affected file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: beLive version 0.2.3 Description: A directory traversal issue exists, allowing remote attackers to read arbitrary files by using a .. (dot dot) in the `arch` parameter of the arch.php file. Recommendations: For beLive version 0.2.3, consider restricting access to the arch.php file until a patch is available, and avoid using the `arch` parameter with untrusted input to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** NotFTP version 1.3.1 **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. (dot dot) in a certain `file` parameter within the config.php file. **Recommendations** For NotFTP version 1.3.1, consider restricting access to the config.php file and the `file` parameter to minimize the risk of exploitation. Avoid using the `file` parameter with untrusted input until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Yet Another NOCC (YANOCC) versions 0.1.0 and earlier **Description** A directory traversal issue exists, allowing remote attackers to include and execute arbitrary local files. This is achieved by using a .. (dot dot) in the `lang` parameter of the check lang.php file. **Recommendations** For Yet Another NOCC (YANOCC) versions 0.1.0 and earlier, as a temporary workaround, consider restricting access to the check lang.php file until a patch is available. Avoid using the `lang` parameter in the affected check lang.php file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PostNuke PostSchedule module version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `eid` parameter in an event action in the index.php file of the PostSchedule module. **Recommendations** For PostNuke PostSchedule module version 1.0, consider restricting access to the `eid` parameter in the index.php file to minimize the risk of exploitation. Avoid using the `eid` parameter in event actions until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PostNuke pnFlashGames module versions 1.5 through 2.5 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is possible when the `magic quotes gpc` setting is disabled. The `id` parameter in a display action is vulnerable to SQL injection. **Recommendations** For PostNuke pnFlashGames module versions 1.5 through 2.5, consider disabling the display action until a patch is available, and ensure `magic quotes gpc` is enabled to mitigate the risk of SQL injection via the `id` parameter.

**Name of the Vulnerable Software and Affected Versions** wpQuiz version 2.7 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter to (1) "viewimage.php" and (2) "comments.php" API endpoints. **Recommendations** For wpQuiz version 2.7, consider restricting access to the "viewimage.php" and "comments.php" endpoints until a patch is available. As a temporary workaround, avoid using the `id` parameter in these endpoints to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** JPortal version 2 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `to` parameter in the mailer.php file. **Recommendations** For JPortal version 2, consider restricting access to the mailer.php file until a patch is available. As a temporary workaround, avoid using the `to` parameter in the affected file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** jPORTAL version 2 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `to` parameter in the mailer.php file. **Recommendations** For jPORTAL version 2, avoid using the `to` parameter in the mailer.php file until a fix is available. As a temporary workaround, consider restricting access to the mailer.php file to minimize the risk of exploitation.

PHP remote file inclusion vulnerability in public includes/pub blocks/activecontent.php in Php Blue Dragon CMS 3.0.0 allows remote attackers to execute arbitrary PHP code via a URL in the vsDragonRootPath parameter, a different vector than CVE-2006-2392, CVE-2006-3076, and CVE-2006-6958.

**Name of the Vulnerable Software and Affected Versions** Php Blue Dragon CMS version 3.0.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `article id` parameter in a "print articles" action, specifically targeting the index.php file. **Recommendations** For Php Blue Dragon CMS version 3.0.0, avoid using the `article id` parameter in the affected API endpoint until the issue is resolved. Consider temporarily restricting access to the index.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Simple Invoices version 2007-05-25 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `submit` parameter in an email action in the `index.php` file. **Recommendations** For Simple Invoices version 2007-05-25, avoid using the `submit` parameter in the email action until the issue is resolved. As a temporary workaround, consider restricting access to the `index.php` file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Open Solution Quick.Cart versions 2.2 and earlier Description: The issue allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in an `sLanguage` cookie. This cookie is used to define a value in `config/general.php`. Recommendations: For Open Solution Quick.Cart versions 2.2 and earlier, consider restricting access to the `index.php` file until a patch is available. As a temporary workaround, avoid using the `sLanguage` cookie or restrict its usage to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Quick.Cart versions 2.2 and earlier Description: The issue allows remote attackers to access the application by leveraging a default username and password in the config/general.php file. This can be used to upload and execute arbitrary code via a login action to the "admin.php" endpoint. Recommendations: For Quick.Cart versions 2.2 and earlier, change the default username and password in the config/general.php file to prevent unauthorized access. As a temporary workaround, consider restricting access to the "admin.php" endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: PostNuke PNphpBB2 module versions 1.2i and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the SQL injection vulnerability in the index.php file via the `c` parameter in the PNphpBB2 module for PostNuke. Recommendations: For PostNuke PNphpBB2 module versions 1.2i and earlier, consider restricting access to the index.php file until a patch is available. As a temporary workaround, avoid using the `c` parameter in the vulnerable module to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Fundanemt versions prior to 2.2.0.1 **Description** The issue allows remote attackers to execute arbitrary commands via shell metacharacters in the `dict` parameter in the core/spellcheck/spellcheck.php file. **Recommendations** For versions prior to 2.2.0.1, update to version 2.2.0.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the spellcheck.php file to minimize the risk of exploitation. Avoid using the `dict` parameter in the affected file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** cpCommerce versions 1.1.0 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id category` parameter in the category.php file. **Recommendations** For versions 1.1.0 and earlier, update to a version later than 1.1.0 to resolve the issue. As a temporary workaround, consider restricting access to the category.php file or sanitizing the `id category` parameter to prevent SQL injection attacks.

**Name of the Vulnerable Software and Affected Versions** Frogss CMS versions 0.7 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `dzial` parameter to "katalog.php", or the `t` parameter to "forum.php" or "forum/viewtopic.php". **Recommendations** For Frogss CMS versions 0.7 and earlier, consider disabling the `dzial` parameter in "katalog.php" and the `t` parameter in "forum.php" and "forum/viewtopic.php" as a temporary workaround until a patch is available. Restrict access to "katalog.php", "forum.php", and "forum/viewtopic.php" to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Papoo versions 3.02 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `menuid` parameter in the "kontakt.php" file. **Recommendations** For Papoo versions 3.02 and earlier, consider restricting access to the `menuid` parameter in the kontakt.php file until a patch is available.

Name of the Vulnerable Software and Affected Versions: SmodBIP versions 1.06 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands, possibly related to home.php, via the `zoom` parameter in the aktualnosci module in index.php. Recommendations: For SmodBIP versions 1.06 and earlier, consider restricting access to the `zoom` parameter in the index.php file of the aktualnosci module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.