0Xrayan

**Name of the Vulnerable Software and Affected Versions** Web-School ERP version 5.0 **Description** A stored XSS issue exists via the `Add Events` feature in the event name and description fields, allowing an attack to inject JavaScript code that will be stored and executed when visitors view the events. **Recommendations** For Web-School ERP version 5.0, consider disabling the `Add Events` feature until a patch is available to prevent the injection of malicious JavaScript code. Restrict access to the event name and description fields to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Web-School ERP version 5.0 **Description** The issue allows a remote attacker to create a student leave application request through the "module/core/studentleaveapplication/create" API endpoint. This is due to the application's failure to validate the CSRF token for a POST request when using the Guardian privilege. **Recommendations** For Web-School ERP version 5.0, ensure proper validation of the CSRF token for all POST requests, especially those using the Guardian privilege, to prevent unauthorized creation of student leave applications. As a temporary workaround, consider restricting access to the "module/core/studentleaveapplication/create" API endpoint until a proper fix is implemented.

**Name of the Vulnerable Software and Affected Versions** Web-School ERP version 5.0 **Description** A blind XSS issue exists, allowing an attacker to inject JavaScript code into the `event name` and `description` fields via the `Add Events` feature. This code is stored on the page and executed when a visitor views the event, potentially sending the victim's information to the attacker's website. **Recommendations** For Web-School ERP version 5.0, consider disabling the `Add Events` feature or restricting access to it until a fix is available. As a temporary workaround, restrict the ability to inject JavaScript code into the `event name` and `description` fields to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Web-School ERP version 5.0 **Description** The issue allows a remote attacker to create a voucher payment request through the "module/accounting/voucher/create" API endpoint. This is possible because the application fails to validate the CSRF token for a POST request when using admin privilege. **Recommendations** For Web-School ERP version 5.0, consider disabling the "module/accounting/voucher/create" endpoint until a patch is available to prevent exploitation. Restrict access to admin privileges to minimize the risk of unauthorized voucher payment requests. Avoid using the admin privilege for POST requests to the "module/accounting/voucher/create" endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: henriquedornas version 5.2.17 Description: A stored XSS issue exists via online live chat. It is reported that henriquedornas is a web design agency and 5.2.17 refers to the PHP version running on the host. Recommendations: For version 5.2.17, consider disabling the online live chat feature until a proper fix is applied to prevent exploitation of the stored XSS issue.

Name of the Vulnerable Software and Affected Versions: henriquedornas version 5.2.17 Description: An information disclosure issue exists because an attacker can dump phpMyAdmin SQL content. Third parties report that this is a site-specific problem. Recommendations: For henriquedornas version 5.2.17, consider restricting access to phpMyAdmin SQL content to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.