Shay6Ooon

**Name of the Vulnerable Software and Affected Versions** tellmatic version 1.0.7 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `tm includepath` parameter to various PHP files, including Classes.inc.php, statistic.inc.php, status.inc.php, status top x.inc.php, or libchart-1.1/libchart.php in the include/ directory. However, access to the include/ directory is typically blocked by .htaccess in deployments using Apache HTTP Server. **Recommendations** For tellmatic version 1.0.7, consider restricting access to the `tm includepath` parameter to prevent remote file inclusion attacks. As a temporary workaround, restrict access to the include/ directory to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** IAPR COMMENCE version 1.3 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `php root path` and sometimes the `privilege root path` parameter to various PHP scripts under multiple directories, including admin/includes/, admin/phase/, includes/, includes/page includes/, reviewer/includes/, reviewer/phase/, and user/phase/. **Recommendations** For IAPR COMMENCE version 1.3, as a temporary workaround, consider restricting access to the vulnerable PHP scripts under the mentioned directories until a patch is available. Avoid using the `php root path` and `privilege root path` parameters in the affected scripts to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** meBiblio version 0.4.5 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `action` parameter in the index.php file. **Recommendations** For meBiblio version 0.4.5, consider restricting access to the index.php file or validating and sanitizing the `action` parameter to prevent remote file inclusion attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Vortex Portal version 1.0.42 **Description** The issue allows remote attackers to execute arbitrary PHP code. This can be achieved by providing a URL in the `cfgProgDir` parameter to specific API endpoints, such as "admincp/auth/secure.php" or "admincp/auth/checklogin.php". **Recommendations** For Vortex Portal version 1.0.42, consider restricting access to the `cfgProgDir` parameter in the affected API endpoints until a patch is available. As a temporary workaround, avoid using the `cfgProgDir` parameter in "admincp/auth/secure.php" and "admincp/auth/checklogin.php" to minimize the risk of exploitation.