Piker

Name of the Vulnerable Software and Affected Versions: RSS Simple News (RSSSN) (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary SQL commands via the `pid` parameter in the "news.php" file when magic quotes gpc is disabled. Recommendations: As a temporary workaround, consider restricting access to the `news.php` file until a patch is available. Avoid using the `pid` parameter in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MyPHPSite (affected versions not specified) **Description** The issue allows remote attackers to read arbitrary files due to a directory traversal vulnerability in index.php when magic quotes gpc is disabled. This is achieved by using a .. (dot dot) in the `mod` parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** My PHP Baseball Stats (MyPBS) (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `seasonID` parameter in the "index.php" file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FreeLyrics version 1.0 **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using directory traversal sequences in the `p` parameter. **Recommendations** For FreeLyrics version 1.0, consider restricting access to the `source.php` file until a patch is available. As a temporary workaround, avoid using the `p` parameter in the affected endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** KafooeyBlog version 1.55b **Description** The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the `lib/image upload.php` script, and then accessing it via a direct request to the file. This is due to an unrestricted file upload vulnerability. **Recommendations** For KafooeyBlog version 1.55b, consider restricting file uploads to only allow non-executable file extensions as a temporary workaround until a patch is available. Restrict access to the `lib/image upload.php` script to minimize the risk of exploitation. Avoid using this script until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: geccBBlite version 2.0 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in the leggi.php file. Recommendations: For geccBBlite version 2.0, avoid using the `id` parameter in the leggi.php file until the issue is resolved. Consider restricting access to the leggi.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** PHP-Crawler version 0.8 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `footer file` parameter in the footer.php file. **Recommendations** For PHP-Crawler version 0.8, consider restricting access to the `footer.php` file or validating the `footer file` parameter to prevent remote file inclusion until a patch is available.

**Name of the Vulnerable Software and Affected Versions** McGallery version 0.5b **Description** The issue allows remote attackers to read arbitrary files and obtain script source code. This is achieved via the `filename` parameter in the "download.php" API endpoint. **Recommendations** For McGallery version 0.5b, consider restricting access to the download.php endpoint until a patch is available. As a temporary workaround, avoid using the `filename` parameter in the download.php endpoint to minimize the risk of exploitation.