Xst3Nz

**Name of the Vulnerable Software and Affected Versions** Crea-Book versions 1.0 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `pseudo` or `passe` parameter in the admin/admin.php file. **Recommendations** For Crea-Book versions 1.0 and earlier, avoid using the `pseudo` and `passe` parameters in the admin/admin.php file until a fix is available. As a temporary workaround, consider restricting access to the admin/admin.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Crea-Book versions 1.0 and earlier **Description** The issue allows remote authenticated administrators to execute arbitrary PHP code via the `Fond de la page` (background color) field and other unspecified fields in admin/configurer2.php, which injects into config.inc.php3. **Recommendations** For Crea-Book versions 1.0 and earlier, consider restricting access to the admin/configurer2.php file until a fix is available, and avoid using the `Fond de la page` field and other vulnerable fields to minimize the risk of exploitation.

PHP remote file inclusion vulnerability in chat.php in Sky GUNNING MySpeach 3.0.7 and earlier, when used with PHP 5, allows remote attackers to execute arbitrary PHP code via an ftp URL in a my ms[root] cookie, a different vector than CVE-2007-0491 and CVE-2006-4630.

Name of the Vulnerable Software and Affected Versions: Sky GUNNING MySpeach versions 3.0.7 and earlier Description: The issue allows remote attackers to include arbitrary local files via a .. (dot dot) and trailing %00 (NULL) in a `my ms[root]` cookie. This can be exploited by sending a crafted cookie to the chat.php file. Recommendations: For Sky GUNNING MySpeach versions 3.0.7 and earlier, as a temporary workaround, consider restricting access to the chat.php file until a patch is available. Avoid using the `my ms[root]` cookie in the affected chat.php file until the issue is resolved.