0Z09E

**Name of the Vulnerable Software and Affected Versions** Chikitsa Patient Management System version 2.0.2 **Description** The software contains an authenticated remote code execution issue in the backup restoration functionality. An authenticated attacker can upload a modified backup zip file containing a malicious PHP shell, allowing for the execution of arbitrary system commands on the server. **Recommendations** Apply updates to address the issue in the backup restoration functionality.

**Name of the Vulnerable Software and Affected Versions** Chikitsa Patient Management System version 2.0.2 **Description** The software contains an authenticated remote code execution issue. Attackers can upload malicious PHP plugins through the module upload functionality. Authenticated attackers can create and upload a ZIP plugin containing a PHP backdoor, enabling arbitrary command execution on the server via a weaponized PHP script. The vulnerable functionality involves uploading modules. **Recommendations** Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the module upload functionality.

**Name of the Vulnerable Software and Affected Versions** HotelDruid version 3.0.3 **Description** A remote code execution issue was discovered, allowing an attacker to execute code by inserting a crafted payload into the `name` field under the Create New Room module. **Recommendations** For HotelDruid version 3.0.3, consider restricting access to the Create New Room module until a patch is available. As a temporary workaround, validate and sanitize user input for the `name` field to prevent malicious payloads. At the moment, there is no information about a newer version that contains a fix for this issue.