Stan Bubrouski

**Name of the Vulnerable Software and Affected Versions** WebCal versions 1.11 through 3.04 **Description** The issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via several parameters to webcal.cgi, including the function, year, and date parameters, as well as through new calendar entries and notes for entries. **Recommendations** For WebCal versions 1.11 through 3.04, consider restricting access to the webcal.cgi endpoint until a fix is available. As a temporary workaround, avoid using the `function`, `year`, and `date` parameters in the webcal.cgi endpoint. Additionally, restrict the creation of new calendar entries and editing of notes for existing entries to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Xscreensaver version 4.14 **Description** The issue is related to certain debugging code that was not removed from Xscreensaver, leading to insecure creation of temporary files in the apple2, xanalogtv, and pong screensavers. This allows local users to overwrite arbitrary files via a symlink attack. **Recommendations** For Xscreensaver version 4.14, consider removing or disabling the affected screensavers (apple2, xanalogtv, and pong) until a patch is available to prevent local users from exploiting this issue.

**Name of the Vulnerable Software and Affected Versions** Xscreensaver versions prior to 4.15 **Description** The issue allows local users to overwrite arbitrary files via a symlink attack due to insecure creation of temporary files in several components, including driver/passwd-kerberos.c, driver/xscreensaver-getimage-video, driver/xscreensaver.kss.in, and the vidwhacker and webcollage screensavers. **Recommendations** For versions prior to 4.15, update to version 4.15 or later to resolve the issue. As a temporary workaround, consider restricting access to the affected components, such as the vidwhacker and webcollage screensavers, until the update is applied.

Name of the Vulnerable Software and Affected Versions: bonsai Mozilla CVS query tool (affected versions not specified) Description: The bonsai Mozilla CVS query tool has an issue where it leaks the absolute pathname of the tool in certain error messages. This occurs in error messages generated by cvslog.cgi, cvsview2.cgi, or multidiff.cgi. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: bonsai Mozilla CVS query tool (affected versions not specified) Description: The issue concerns cross-site scripting vulnerabilities (XSS) that allow remote attackers to execute arbitrary web script. This can be achieved through various parameters in different CGI scripts, including `file`, `root`, or `rev` parameters to `cvslog.cgi`, `file` or `root` parameters to `cvsblame.cgi`, several parameters to `cvsquery.cgi`, the `person` parameter to `showcheckins.cgi`, and the `module` parameter to `cvsqueryform.cgi`. There may be additional attack vectors. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.