0Xheeo

**Name of the Vulnerable Software and Affected Versions** EasyCMS versions prior to 1.7 **Description** A security flaw exists in EasyCMS that allows for remote SQL injection. The issue is located within the Request Parameter Handler component, specifically in the file `/RbacuserAction.class.php`. Manipulation of the ` order` argument can lead to successful exploitation. The exploit has been publicly released. **Recommendations** Update to version 1.7 or later. As a temporary workaround, restrict access to the `/RbacuserAction.class.php` file. Avoid using the ` order` parameter in requests to the affected component.

**Name of the Vulnerable Software and Affected Versions** chshcms mccms version 2.7 **Description** A critical issue affects the `restore del` function in the file `/sys/apps/controllers/admin/Backups.php`. The manipulation of the `dirs` argument leads to path traversal. This issue can be initiated remotely. **Recommendations** For version 2.7, consider disabling the `restore del` function in the `/sys/apps/controllers/admin/Backups.php` file until a patch is available. Restrict access to the `dirs` argument to minimize the risk of exploitation.