Noge

**Name of the Vulnerable Software and Affected Versions** com redtwitter version 1.0.x including 1.0b11 for Joomla! **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in the `view` parameter to "index.php". **Recommendations** For version 1.0.x including 1.0b11, consider restricting access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the `view` parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Joomla! com redshop component versions 1.0.x **Description** A directory traversal issue allows remote attackers to read arbitrary files by using a .. (dot dot) in the `view` parameter to "index.php". **Recommendations** For version 1.0.x, update to a version that includes a fix for this issue, or as a temporary workaround, consider restricting access to the "index.php" endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** GraFX MiniCWB version 2.3.0 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `LANG` parameter to various PHP files, including 'en.inc.php', 'hu.inc.php', 'no.inc.php', 'ro.inc.php', and 'ru.inc.php' in the 'language/' directory. **Recommendations** For GraFX MiniCWB version 2.3.0, consider restricting access to the vulnerable PHP files in the 'language/' directory until a patch is available. Avoid using the `LANG` parameter in URLs that access these files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Pre E-Learning Portal (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `course ID` parameter in the "search result.asp" file. This can lead to unauthorized access and manipulation of database content. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** com tpdugg version 1.1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `id` parameter in a 'tags' action to 'index.php'. **Recommendations** For version 1.1, avoid using the `id` parameter in the 'tags' action to 'index.php' until the issue is resolved. As a temporary workaround, consider restricting access to the 'index.php' endpoint with a 'tags' action to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** linkSpheric version 0.74 Beta 6 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `listID` parameter in the "viewListing.php" file. **Recommendations** For linkSpheric version 0.74 Beta 6, avoid using the `listID` parameter in the vulnerable "viewListing.php" file until the issue is resolved. As a temporary workaround, consider restricting access to the "viewListing.php" file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** MaxCMS version 3.11.20b **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in various parameters, including `is projectPath`, `GLOBALS[thCMS root]`, `is path`, and `thCMS root`, when `register globals` is enabled. This affects multiple files in the includes, classes, and modul directories. **Recommendations** For MaxCMS version 3.11.20b, consider disabling the `register globals` setting to prevent exploitation. Additionally, restrict access to the vulnerable parameters, such as `is projectPath`, `GLOBALS[thCMS root]`, `is path`, and `thCMS root`, until a patch is available. Avoid using these parameters in the affected API endpoints, such as `includes/InstantSite/inc.is root.php`, `classes/class.Tree.php`, and `modul/mod.rssreader.php`, until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PHP Pro Bid (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `auction id` parameter in the auction details.php file. This can lead to unauthorized access and manipulation of database content. **Recommendations** For PHP Pro Bid, consider validating and sanitizing the `auction id` parameter to prevent SQL injection attacks. As a temporary workaround, restrict access to the auction details.php file until a patch is available.

**Name of the Vulnerable Software and Affected Versions** FSphp version 0.2.1 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `FSPHP LIB` parameter to specific PHP files, including (1) 'FSphp.php', (2) 'navigation.php', and (3) 'pathwrite.php' in the 'lib/' directory. **Recommendations** For FSphp version 0.2.1, as a temporary workaround, consider restricting access to the `FSPHP LIB` parameter in the affected API endpoints until a patch is available. Avoid using the `FSPHP LIB` parameter in the 'FSphp.php', 'navigation.php', and 'pathwrite.php' files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PageTree CMS version 0.0.2 BETA 0001 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `GLOBALS[PT Config][dir][data]` parameter in the admin/plugins/Online Users/main.php file. **Recommendations** For PageTree CMS version 0.0.2 BETA 0001, avoid using the `GLOBALS[PT Config][dir][data]` parameter in the admin/plugins/Online Users/main.php file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Basilic version 1.5.13 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `idAuthor` parameter to API endpoints such as "index.php" and possibly "allpubs.php" in the publications directory. Recommendations: For version 1.5.13, avoid using the `idAuthor` parameter in the affected API endpoints until the issue is resolved. As a temporary workaround, consider restricting access to the "index.php" and "allpubs.php" files in the publications directory to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Ultrize TimeSheet version 1.2.2 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `config[include dir]` parameter when `register globals` is enabled. **Recommendations** For Ultrize TimeSheet version 1.2.2, consider disabling the `register globals` setting to prevent exploitation. Additionally, restrict access to the `include/timesheet.php` file to minimize the risk of arbitrary PHP code execution. Avoid using the `config[include dir]` parameter in URLs until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** cpCommerce version 1.2.8 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id document` parameter in the document.php file. **Recommendations** For cpCommerce version 1.2.8, consider restricting access to the document.php file until a patch is available, and avoid using the `id document` parameter in this file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Minimal ABlog version 0.4 **Description** The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the admin/uploader.php script, and then accessing it via a direct request to the file in the img/ directory. **Recommendations** For Minimal ABlog version 0.4, consider restricting or disabling the file upload functionality in admin/uploader.php until a patch is available to prevent remote attackers from executing arbitrary code.

**Name of the Vulnerable Software and Affected Versions** minimal-ablog version 0.4 **Description** The issue is related to the `uploader.php` file, which does not properly restrict access. This allows remote attackers to gain administrative privileges via a direct request to the vulnerable endpoint. **Recommendations** For minimal-ablog version 0.4, restrict access to the `uploader.php` file to prevent unauthorized requests.

**Name of the Vulnerable Software and Affected Versions** Minimal ABlog version 0.4 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in the "index.php" file. **Recommendations** For Minimal ABlog version 0.4, consider restricting access to the `id` parameter in the "index.php" file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** VirtueMart Google Base component version 1.1 for Joomla! **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `mosConfig absolute path` parameter in the admin.googlebase.php file. **Recommendations** For VirtueMart Google Base component version 1.1, consider restricting access to the `admin.googlebase.php` file until a patch is available. Avoid using the `mosConfig absolute path` parameter in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Flash Tree Gallery (com treeg) component version 1.0 for Joomla! **Description** The issue allows remote attackers to execute arbitrary PHP code via the `mosConfig live site` parameter in the admin.treeg.php file when register globals is enabled. **Recommendations** For Flash Tree Gallery (com treeg) component version 1.0, consider disabling the register globals setting to prevent exploitation. Additionally, restrict access to the admin.treeg.php file until a fix is available. Avoid using the `mosConfig live site` parameter in the affected component until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: Onguma Time Sheet (com ongumatimesheet20) version 2.0 4b Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the `mosConfig absolute path` parameter in the lib/onguma.class.php file. This can be exploited by sending a malicious URL to the affected component. Recommendations: For Onguma Time Sheet (com ongumatimesheet20) version 2.0 4b, consider restricting access to the `lib/onguma.class.php` file until a patch is available. Avoid using the `mosConfig absolute path` parameter in the affected component to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Broadcast Machine version 0.1 Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in the `baseDir` parameter to various PHP files, including MySQLController.php, SQLController.php, SetupController.php, VideoController.php, and ViewController.php in the controllers/ directory. Recommendations: For Broadcast Machine version 0.1, consider restricting access to the `baseDir` parameter in the affected PHP files to minimize the risk of exploitation. Avoid using the `baseDir` parameter in the API endpoints related to these files until the issue is resolved.