Stenoplasma

**Name of the Vulnerable Software and Affected Versions** AjaXplorer versions 3.2.x through 3.2.4 AjaXplorer versions 4.0.x through 4.0.3 **Description** The issue allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the `pluginName` or `pluginPath` parameter in a "get template" action. This is due to multiple directory traversal vulnerabilities in the Get Template feature. **Recommendations** For AjaXplorer versions 3.2.x through 3.2.4, update to version 3.2.5 or later. For AjaXplorer versions 4.0.x through 4.0.3, update to version 4.0.4 or later.

**Name of the Vulnerable Software and Affected Versions** AjaXplorer versions 3.2.x through 3.2.4 AjaXplorer versions 4.0.x through 4.0.3 **Description** The issue is related to improper cookie authentication, allowing remote attackers to gain login access by exploiting knowledge of a password hash. **Recommendations** For versions 3.2.x through 3.2.4, update to version 3.2.5 or later. For versions 4.0.x through 4.0.3, update to version 4.0.4 or later.

**Name of the Vulnerable Software and Affected Versions** Lomtec ActiveWeb Professional version 3.0 **Description** The issue concerns an unrestricted file upload vulnerability in the EasyEdit module. This allows remote attackers to execute arbitrary code by uploading an executable file. The vulnerability is exploited through the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm. **Recommendations** For Lomtec ActiveWeb Professional version 3.0, restrict access to the UploadDirectory field and limit the Accepted Extensions in the getImagefile component of EasyEdit.cfm to prevent uploading of executable files. Consider disabling the EasyEdit module until a proper fix is available.

**Name of the Vulnerable Software and Affected Versions** AWStats versions prior to 7.0 **Description** The issue allows remote attackers to execute arbitrary commands by providing a crafted configuration file located at a UNC share pathname through the `configdir` parameter in the URL of the `awstats.cgi` script. **Recommendations** For versions prior to 7.0, update to version 7.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `awstats.cgi` script to minimize the risk of exploitation. Avoid using the `configdir` parameter in the URL until the issue is resolved.