Krzysztof Burghardt

**Name of the Vulnerable Software and Affected Versions** DASAN H660RM GPON routers with firmware 1.03-0022 **Description** The issue concerns a lack of authorization check in the `diag tool.cgi` component, allowing remote attackers to send a GET request and execute a ping command. This can be used to enumerate LAN devices or potentially crash the router with a Denial of Service (DoS) attack. **Recommendations** For DASAN H660RM GPON routers with firmware 1.03-0022, consider restricting access to the `diag tool.cgi` component until a patch is available. As a temporary workaround, limiting the exposure of the router to the internet or implementing network segmentation to reduce the attack surface can help mitigate the risk.

**Name of the Vulnerable Software and Affected Versions** DASAN H660RM devices with firmware 1.03-0022 **Description** The issue concerns the use of a hard-coded key for logs encryption in the affected devices. This means that data stored using this key can be decrypted by anyone who gains access to the key. **Recommendations** For DASAN H660RM devices with firmware 1.03-0022, consider changing the hard-coded key to a unique, non-hardcoded key for logs encryption to prevent unauthorized access to the encrypted data. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DASAN H660RM firmware 1.03-0022 **Description** The issue affects the Boa server configuration, allowing logged-in users to read the credentials of administration web interface users due to the logging of POST data to the /tmp/boa-temp file. **Recommendations** For DASAN H660RM firmware 1.03-0022, consider restricting access to the administration web interface to minimize the risk of exploitation. As a temporary workaround, avoid using the administration web interface until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DASAN H665 version 1.46p1-0028 **Description** A backdoor account exists in the /bin/login of DASAN H665 devices, allowing an attacker to login to the admin account via TELNET using the account `dnsekakf2$$`. This issue has seen increased interest, indicating potential exploitation. **Recommendations** For DASAN H665 version 1.46p1-0028, consider disabling TELNET access to prevent exploitation of the backdoor account `dnsekakf2$$` until a patch is available. Restrict access to the admin account to minimize the risk of unauthorized login.

**Name of the Vulnerable Software and Affected Versions** John Godley Search Unleashed plugin for WordPress version 0.2.10 **Description** The issue is related to a cross-site scripting (XSS) vulnerability in the log feature of the plugin. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the `s` parameter when the administrator views the log file. **Recommendations** For John Godley Search Unleashed plugin for WordPress version 0.2.10, consider disabling the log feature until a patch is available to prevent exploitation. Restrict access to the log file to minimize the risk of arbitrary web script or HTML injection via the `s` parameter. At the moment, there is no information about a newer version that contains a fix for this vulnerability.