S4Mi

Name of the Vulnerable Software and Affected Versions: KwsPHP newsletter module version 1.0 Description: The issue allows remote attackers to execute arbitrary SQL commands via the `newsletter` parameter in the index.php file when magic quotes gpc is disabled. Recommendations: For KwsPHP newsletter module version 1.0, consider disabling the execution of SQL commands from user input until a patch is available, and enable magic quotes gpc to prevent SQL injection attacks.

**Name of the Vulnerable Software and Affected Versions** KwsPHP version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `pseudo` parameter to "login.php", the `id` parameter to "index.php" in a carnet editer action in the Member Space (espace membre) module, or the `typenav` parameter to "index.php" in a browser aff action in the stats module. **Recommendations** For KwsPHP version 1.0, consider restricting access to the "login.php", "index.php" in the Member Space module, and "index.php" in the stats module to minimize the risk of exploitation. Avoid using the `pseudo`, `id`, and `typenav` parameters in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: JBlog version 1.0 Description: The issue allows remote attackers to execute arbitrary SQL commands via the `id` parameter to "index.php", and also allows remote authenticated administrators to execute arbitrary SQL commands via the `id` parameter to "admin/modifpost.php". Recommendations: For JBlog version 1.0, as a temporary workaround, consider restricting access to the `id` parameter in the affected API endpoints until a patch is available. Avoid using the `id` parameter in the "index.php" and "admin/modifpost.php" endpoints until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: JBlog version 1.0 Description: The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the `id` parameter to "index.php", or the `search` parameter or `theme` cookie to "recherche.php". Recommendations: For JBlog version 1.0, consider restricting access to the "index.php" and "recherche.php" endpoints until a patch is available. As a temporary workaround, avoid using the `id` parameter in "index.php", the `search` parameter in "recherche.php", and the `theme` cookie to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: JBlog version 1.0 Description: The issue allows remote attackers to create arbitrary accounts without requiring authentication. This is possible due to a lack of authentication in the `admin/ajoutaut.php` file. Attackers can exploit this by modifying the `mot` and `droit` parameters. Recommendations: For JBlog version 1.0, consider implementing proper authentication mechanisms for the `admin/ajoutaut.php` file to prevent unauthorized account creation. As a temporary workaround, restrict access to the `admin/ajoutaut.php` file until a proper fix is applied. Avoid using the `mot` and `droit` parameters in the affected file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Cahier de texte version 2.0 **Description** The issue concerns SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands. This can be achieved via the `matiere ID` parameter in "lire.php" or the `classe ID` parameter in "lire a faire.php". **Recommendations** For Cahier de texte version 2.0, consider restricting access to the `lire.php` and `lire a faire.php` scripts until a patch is available, and avoid using the `matiere ID` and `classe ID` parameters in these scripts to minimize the risk of exploitation.