Rem0Ve

**Name of the Vulnerable Software and Affected Versions** Havalite versions 1.0.4 and earlier **Description** The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting (XSS) attacks. This can be achieved through various means, including the find or replace fields to "havalite/findReplace.php", the `username` parameter to "havalite/hava login.php", the Edit Article module, "hava post.php" in the postAuthor module, the `postId` parameter to "hava post.php", the `userId` parameter to "hava user.php", or the `linkId` parameter to "hava link.php". **Recommendations** For Havalite versions 1.0.4 and earlier, consider disabling access to the affected modules and parameters, such as the find and replace fields, `username`, `postId`, `userId`, and `linkId` parameters, until a patch is available. Restrict access to "havalite/findReplace.php", "havalite/hava login.php", the Edit Article module, "hava post.php", "hava user.php", and "hava link.php" to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Barracuda Spam & Virus Firewall 600 Firmware versions 4.0.1.009 and earlier **Description** The issue allows remote authenticated users to inject arbitrary web script or HTML via the Troubleshooting in the Trace route Device module or the LDAP Username in the LDAP Configuration module. **Recommendations** For versions 4.0.1.009 and earlier, update to a version later than 4.0.1.009 to resolve the issue. As a temporary workaround, consider restricting access to the Troubleshooting and LDAP Configuration modules until a patch is available. Avoid using the LDAP Username field in the LDAP Configuration module with untrusted input until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** MyClientBase version 0.12 **Description** The issue concerns SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. This can be achieved via the `invoice number` or `tags` parameter to the "index.php/invoice search" endpoint. **Recommendations** For MyClientBase version 0.12, consider restricting access to the "index.php/invoice search" endpoint until a patch is available. As a temporary workaround, avoid using the `invoice number` and `tags` parameters in this endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** MyClientBase version 0.12 **Description** The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the `first name` or `last name` parameters in the "index.php/users/form/user id" API endpoint. **Recommendations** For MyClientBase version 0.12, as a temporary workaround, consider restricting input for the `first name` and `last name` parameters in the "index.php/users/form/user id" endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Applications Manager 9.x and 10.x allow remote attackers to inject arbitrary web script or HTML via the (1) period parameter to showHistoryData.do; (2) selectedNetwork, (3) network, or (4) group parameters to showresource.do; (5) header parameter to AlarmView.do; or (6) attName parameter to jsp/PopUp Graph.jsp. NOTE: the Search.do/query vector is already covered by CVE-2008-1566, and the jsp/ThresholdActionConfiguration.jsp redirectto vector is already covered by CVE-2008-0474.

**Name of the Vulnerable Software and Affected Versions** ManageEngine Applications Manager versions 9.x through 10.x **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `viewId` parameter to "fault/AlarmView.do" or the `period` parameter to "showHistoryData.do". **Recommendations** For versions 9.x through 10.x, update to a version that contains a fix for this issue, as using these versions poses a significant risk due to the SQL injection vulnerabilities.

**Name of the Vulnerable Software and Affected Versions** Fortinet FortiGate UTM WAF appliances with FortiOS versions prior to 4.3.6 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via several vectors, including the Endpoint Monitor, Dialup List, or Log&Report Display modules. Additionally, the `fields sorted opt` parameter to `/user/auth/list` or `/endpointcompliance/app detect/predefined sig list` API endpoints is vulnerable. This is due to insufficient protection of the web page structure, which can be exploited by a remote attacker to inject arbitrary JavaScript or HTML code. **Recommendations** For FortiOS versions prior to 4.3.6, update to version 4.3.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the Endpoint Monitor, Dialup List, and Log&Report Display modules until a patch is available. Avoid using the `fields sorted opt` parameter in the affected API endpoints until the issue is resolved.