Manuel Garcia Cardenas

**Nome do software vulnerável e versões afetadas** Plugin Easy Table versão 1.6 **Descrição** Foi detectada uma falha no plugin Easy Table, afetando uma parte desconhecida do arquivo /wordpress/wp-admin/options-general.php. A manipulação com a entrada "><script>alert(1)</script> leva a um ataque de cross-site scripting básico. É possível iniciar o ataque remotamente. **Recomendações** Para o Easy Table Plugin versão 1.6, considere desativar o acesso ao arquivo /wordpress/wp-admin/options-general.php até que um patch esteja disponível. Restrinja a entrada de dados para prevenir ataques de cross-site scripting.

**Nome do software vulnerável e versões afetadas** Plugin Kama Click Counter, versões até 3.4.8 **Descrição** Foi identificada uma vulnerabilidade crítica no plugin Kama Click Counter. Este problema afeta uma parte desconhecida do arquivo wp-admin/admin.php. A manipulação do argumento `order by/order` com a entrada `ASC%2c(select*from(select(sleep(2)))a)` leva a uma injeção de SQL (Blind). É possível iniciar o ataque remotamente. A exploração foi divulgada ao público e pode estar em uso. **Recomendações** Para versões do plugin Kama Click Counter até a 3.4.8, atualize para a versão 3.4.9 para resolver este problema. Como solução temporária, considere restringir o acesso ao arquivo `wp-admin/admin.php` até que a atualização seja aplicada. Evite usar o argumento `order by/order` no endpoint da API afetado até que o problema seja resolvido.

**Nome do software vulnerável e versões afetadas** Composr versão 10.0.30 **Descrição** A vulnerabilidade permite um ataque XSS persistente por meio do nome de um grupo de usuários na configuração de segurança. Isso pode ser explorado para executar scripts maliciosos no sistema afetado. **Recomendações** Para a versão 10.0.30 do Composr, atualize para uma versão que corrija este problema para evitar a exploração. Como solução temporária, considere restringir o acesso à configuração de segurança para minimizar o risco de exploração. Evite usar dados inseridos pelo usuário para nomes de grupos de usuários até que o problema seja resolvido.

**Name of the Vulnerable Software and Affected Versions** CMS Made Simple version 2.2.10 **Description** The issue allows for XSS via the `m1 name` parameter in the "Add Article" section under Content -> Content Manager -> News. **Recommendations** For CMS Made Simple version 2.2.10, update to a version that fixes this issue to prevent exploitation.

**Name of the Vulnerable Software and Affected Versions** Exponent CMS versions prior to 2.3.9 patch 2 **Description** The issue allows an attacker to upload a malicious file to any folder on the site via a cpi directory traversal in the Pixidou Image Editor. **Recommendations** For versions prior to 2.3.9 patch 2, update to version 2.3.9 patch 2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** 4images versions 1.7.11 and earlier **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the `cat description` parameter in an "updatecat" action to "admin/categories.php". **Recommendations** For versions 1.7.11 and earlier, update to a version later than 1.7.11 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WebsiteBaker version 2.8.3 **Description** The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the QUERY STRING to "wb/admin/admintools/tool.php" or the `section id` parameter to several files in the wb/modules/ directory, including "edit module files.php", "news/add post.php", "news/modify group.php", "news/modify post.php", and "news/modify settings.php". **Recommendations** For WebsiteBaker version 2.8.3, consider disabling access to the vulnerable API endpoints and parameters, such as the QUERY STRING to "wb/admin/admintools/tool.php" and the `section id` parameter in the affected files, until a patch is available. Restrict access to the vulnerable modules in the wb/modules/ directory to minimize the risk of exploitation. Avoid using the `section id` parameter in the affected API endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** WebsiteBaker version 2.8.3 **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `page id` parameter in the "admin/pages/modify.php" endpoint. **Recommendations** For version 2.8.3, consider restricting access to the "admin/pages/modify.php" endpoint until a patch is available. As a temporary workaround, avoid using the `page id` parameter in this endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Zoph versions 0.9.1 and earlier **Description** The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the `photographer id` or ` crumb` parameter in the php/edit photos.php file. **Recommendations** For Zoph versions 0.9.1 and earlier, as a temporary workaround, consider restricting access to the php/edit photos.php file until a patch is available. Avoid using the `photographer id` and ` crumb` parameters in the affected file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Zoph versions 0.9.1 and earlier **Description** The issue allows remote authenticated users to execute arbitrary SQL commands. This can be achieved via the ` action` parameter to `group.php` or `user.php`, or the `location id` parameter to `photos.php` in `php/`. **Recommendations** For Zoph versions 0.9.1 and earlier, consider restricting access to the ` action` parameter in `group.php` and `user.php`, as well as the `location id` parameter in `photos.php`, until a fix is available. As a temporary workaround, avoid using these parameters in the affected API endpoints. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Nibbleblog versions prior to 4.0.2 **Description** The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the `author name` or `content` parameter to "index.php". **Recommendations** For versions prior to 4.0.2, update to version 4.0.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** XOOPS versions prior to 2.5.7 Final **Description** The issue allows remote authenticated users to execute arbitrary SQL commands. This is achieved via the `selgroups` parameter in the `/htdocs/modules/system/admin.php` API endpoint. **Recommendations** For versions prior to 2.5.7 Final, update to version 2.5.7 Final or later to resolve the issue. As a temporary workaround, consider restricting access to the `admin.php` module to minimize the risk of exploitation. Avoid using the `selgroups` parameter in the affected API endpoint until the issue is resolved.