Ulaş Deniz İlhan

**Name of the Vulnerable Software and Affected Versions** The beesblog (aka Bees Blog) component for thirty bees version 1.6.2 and earlier **Description** The issue allows Reflected XSS because the `sharing url` in `controllers/front/post.php` is mishandled. This can lead to malicious scripts being injected into the website. **Recommendations** For versions prior to 1.6.2, update to version 1.6.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the `controllers/front/post.php` file or disabling the `sharing url` parameter until a patch is available.

**Name of the Vulnerable Software and Affected Versions** thirty bees versions prior to 1.5.0 **Description** A stored cross-site scripting (XSS) issue exists due to error mishandling in the `admin/AdminRequestSqlController.php` component, allowing attackers to execute arbitrary web script or HTML via the `$e->getMessage()` function. This can be exploited by manipulating the error message to inject malicious scripts. **Recommendations** For versions prior to 1.5.0, update to version 1.5.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the `admin/AdminRequestSqlController.php` component to minimize the risk of exploitation. Avoid using the `$e->getMessage()` function in error handling until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Thirty Bees Core version 1.4.0 **Description** The issue is a reflected cross-site scripting (XSS) vulnerability. It allows attackers to execute arbitrary JavaScript in a user's web browser via a crafted payload. The vulnerability is exploited through the `backup pagination` parameter at the `/controller/AdminController.php` endpoint. **Recommendations** For Thirty Bees Core version 1.4.0, consider disabling access to the `/controller/AdminController.php` endpoint until a patch is available. As a temporary workaround, restrict the use of the `backup pagination` parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MISP versions prior to 2.4.172 **Description** The issue arises from the improper sanitization of the `title for layout` in Correlations, CorrelationExclusions, and Layouts. This could potentially lead to security issues, although specific details about the nature of the exploitation or affected devices are not provided. **Recommendations** For versions prior to 2.4.172, update to version 2.4.172 or later to resolve the issue. As a temporary workaround, consider restricting access to the Correlations, CorrelationExclusions, and Layouts features until the update is applied.

**Name of the Vulnerable Software and Affected Versions** MISP version 2.4.169 **Description** The issue allows for XSS in the community index due to a vulnerability in the CustomPaginationTool.php file. **Recommendations** For MISP version 2.4.169, update to a version that fixes the issue in the CustomPaginationTool.php file to prevent XSS in the community index.

**Name of the Vulnerable Software and Affected Versions** Cerebrate version 1.13 **Description** A blind SQL injection issue exists in the "searchAll API endpoint". This allows for potential exploitation. **Recommendations** For Cerebrate version 1.13, consider disabling access to the "searchAll API endpoint" until a patch is available to prevent potential SQL injection attacks.

**Name of the Vulnerable Software and Affected Versions** MISP versions prior to 2.4.167 **Description** The issue arises from the mishandling of `ordered url params` and `additional delimiters` in the `app/Controller/Component/IndexFilterComponent.php` file. This mishandling can lead to potential security issues. **Recommendations** For versions prior to 2.4.167, update to version 2.4.167 or later to resolve the issue. As a temporary workaround, consider restricting access to the `IndexFilterComponent` until a patch is applied.