0Kooo

**Name of the Vulnerable Software and Affected Versions** skyselang yylAdmin versions up to 3.0 **Description** A critical issue was found in the Backend component, specifically in the function list of the file /app/admin/controller/file/File.php. The manipulation of the `is disable` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For versions up to 3.0, consider restricting access to the vulnerable function list in the /app/admin/controller/file/File.php file until a patch is available. As a temporary workaround, avoid using the `is disable` argument in the affected function to minimize the risk of SQL injection.

Name of the Vulnerable Software and Affected Versions: Mini-Tmall versions up to 20240901 Description: A critical issue was found in the function `rewardMapper.select` of the file `tmall/admin/order/1/1`. The manipulation of the argument `orderBy` leads to SQL injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For Mini-Tmall versions up to 20240901, as a temporary workaround, consider disabling the `rewardMapper.select` function until a patch is available. Restrict access to the `tmall/admin/order/1/1` file to minimize the risk of exploitation. Avoid using the `orderBy` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: OpenRapid RapidCMS versions up to 1.3.1 Description: A critical issue was found in OpenRapid RapidCMS, affecting the file /admin/user/user-move-run.php. The manipulation of the `username` argument leads to SQL injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Recommendations: For OpenRapid RapidCMS versions up to 1.3.1, as a temporary workaround, consider restricting access to the /admin/user/user-move-run.php file until a patch is available. Avoid using the `username` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: OpenRapid RapidCMS versions prior to 1.3.1 Description: A critical issue has been found in OpenRapid RapidCMS. The problem lies in an unknown function of the file /resource/runlogon.php. Manipulation of the `username` argument leads to SQL injection. It is possible to launch the attack remotely. Recommendations: For versions prior to 1.3.1, as a temporary workaround, consider disabling the unknown function in the /resource/runlogon.php file until a patch is available. Restrict access to the /resource/runlogon.php file to minimize the risk of exploitation. Avoid using the `username` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: FeehiCMS versions up to 2.1.1 Description: A critical issue has been found in FeehiCMS, affecting the `createBanner` function of the file `/admin/index.php?r=banner%2Fbanner-create`. The manipulation of the argument `BannerForm[img]` leads to unrestricted upload. This issue can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond. Recommendations: For FeehiCMS versions up to 2.1.1, as a temporary workaround, consider disabling the `createBanner` function until a patch is available. Restrict access to the `/admin/index.php?r=banner%2Fbanner-create` endpoint to minimize the risk of exploitation. Avoid using the `BannerForm[img]` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: FeehiCMS versions up to 2.1.1 Description: A critical vulnerability was found in FeehiCMS, affecting the function update of the file /admin/index.php?r=friendly-link%2Fupdate. The manipulation of the argument `FriendlyLink[image]` leads to unrestricted upload. It is possible to initiate the attack remotely. Recommendations: For FeehiCMS versions up to 2.1.1, as a temporary workaround, consider disabling the update function of the file /admin/index.php?r=friendly-link%2Fupdate until a patch is available. Restrict access to the `FriendlyLink[image]` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: FeehiCMS versions up to 2.1.1 Description: A critical issue affects the `insert` function of the file `/admin/index.php?r=user%2Fcreate`. The manipulation of the argument `User[avatar]` leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For FeehiCMS versions up to 2.1.1, consider disabling the `insert` function in the `/admin/index.php?r=user%2Fcreate` file to prevent unrestricted upload until a patch is available. Restrict access to the `User[avatar]` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZZCMS version 2023 **Description** A critical vulnerability was found in ZZCMS 2023, affecting unknown code in the file /I/list.php. The manipulation of the `skin` argument leads to path traversal. This issue can be exploited remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider restricting access to the /I/list.php file until a patch is available. Avoid using the `skin` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZZCMS version 2023 **Description** A critical vulnerability was found in ZZCMS, affecting an unknown functionality of the file "/admin/class.php?dowhat=modifyclass". The manipulation of the argument `skin[]` leads to path traversal. The attack can be launched remotely. **Recommendations** For ZZCMS version 2023, as a temporary workaround, consider restricting access to the "/admin/class.php?dowhat=modifyclass" endpoint until a patch is available. Avoid using the `skin[]` argument in the affected endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZZCMS version 2023 **Description** A critical vulnerability has been found in ZZCMS. The issue affects an unknown function of the file /admin/about edit.php?action=modify. The manipulation of the `skin` argument leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For ZZCMS version 2023, as a temporary workaround, consider restricting access to the /admin/about edit.php?action=modify endpoint until a patch is available. Additionally, avoid using the `skin` argument in the affected endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZZCMS version 2023 **Description** A problem affects an unknown processing of the file 3/E bak5.1/upload/eginfo.php. The manipulation of the `phome` argument with the input `ShowPHPInfo` leads to information disclosure. The attack may be initiated remotely. **Recommendations** As a temporary workaround, consider restricting access to the file 3/E bak5.1/upload/eginfo.php until a patch is available. Avoid using the `phome` argument with the input `ShowPHPInfo` in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.