Long Hà

**Name of the Vulnerable Software and Affected Versions** Qfiling versions prior to 3.13.1 **Description** A path traversal issue exists in Qfiling that could allow remote attackers to read the contents of unexpected files or system data. Approximately 3257k+ instances are potentially exposed. The vulnerability allows access to files outside the intended directory through manipulation of file paths. **Recommendations** Update Qfiling to version 3.13.1 or later.

**Name of the Vulnerable Software and Affected Versions** QuMagie versions prior to 2.7.0 **Description** An SQL injection issue exists in QuMagie that could allow a remote attacker to execute unauthorized code or commands. The vulnerability can be exploited through SQL injection. **Recommendations** Update to QuMagie version 2.7.0 or later.