Admin

**Name of the Vulnerable Software and Affected Versions** Victure RX1800 version EN V1.0.0 r12 110933 **Description** A command injection issue was discovered. **Recommendations** For version EN V1.0.0 r12 110933, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Victure RX1800 version EN V1.0.0 r12 110933 **Description** The issue is related to incorrect access control, allowing attackers to bypass authentication and enable SSH and Telnet services. **Recommendations** For version EN V1.0.0 r12 110933, as a temporary workaround, consider disabling the SSH and Telnet services until a patch is available. Restrict access to these services to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Victure RX1800 version EN V1.0.0 r12 110933 **Description** An issue in the Victure RX1800 allows physically proximate attackers to execute arbitrary code or gain root access. **Recommendations** For version EN V1.0.0 r12 110933, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Victure RX1800 version EN V1.0.0 r12 110933 **Description** The issue is related to a weak default password used by the Victure RX1800, which includes the last 8 digits of the Mac address. **Recommendations** For version EN V1.0.0 r12 110933, consider changing the default password to a stronger one to minimize the risk of exploitation. As a temporary workaround, restrict access to the device until a patch or official guidance is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SeedDMS versions 5.1.7 through 6.0.20 **Description** The issue is related to weak reset token generation, allowing attackers to execute a full account takeover via a brute force attack. **Recommendations** For SeedDMS version 5.1.7, update to a version that addresses the weak reset token generation issue. For SeedDMS version 6.0.20, update to a version that addresses the weak reset token generation issue. As a temporary workaround, consider restricting access to the account reset functionality until a patch is available.

**Name of the Vulnerable Software and Affected Versions** WPanel 4 versions 4.3.1 and below **Description** The issue is related to the lack of restrictions on file uploads, allowing a remote attacker to execute arbitrary code by uploading a malicious PHP file. This can be done through various image upload features, including the Dashboard's Avatar image, Posts Folder image, Pages Folder image, and Gallery Folder image. **Recommendations** For WPanel 4 versions 4.3.1 and below, consider disabling the image upload features for the Dashboard's Avatar, Posts Folder, Pages Folder, and Gallery Folder until a patch is available. Restrict access to these features to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AngelineCMS versions 0.6.5 and earlier **Description** The issue allows remote attackers to obtain sensitive information. This can be achieved via a direct request for various PHP files, including `adodb-access.inc.php`, `adodb-ado.inc.php`, `adodb-ado access.inc`, `adodb-ado mssql.inc.php`, `adodb-borland ibase`, `adodb-csv.inc.php`, `adodb-db2.inc.php`, `adodb-fbsql.inc.php`, `adodb-firebird.inc.php`, `adodb-ibase.inc.php`, `adodb-informix.inc.php`, `adodb-informix72.inc`, `adodb-mssql.inc.php`, `adodb-mssqlpo.inc.php`, `adodb-mysql.inc.php`, `adodb-mysqlt.inc.php`, `adodb-oci8.inc.php`, `adodb-oci805.inc.php`, `adodb-oci8po.inc.php`, and `adodb-odbc.inc.php`. These files reveal the path in various error messages. Additionally, a direct request for the `lib/system/` directory and possibly other `lib/` directories provides a directory listing and "architecture view." **Recommendations** For AngelineCMS versions 0.6.5 and earlier, consider restricting access to the sensitive PHP files and directories, such as `adodb-access.inc.php`, `adodb-ado.inc.php`, `adodb-ado access.inc`, `adodb-ado mssql.inc.php`, `adodb-borland ibase`, `adodb-csv.inc.php`, `adodb-db2.inc.php`, `adodb-fbsql.inc.php`, `adodb-firebird.inc.php`, `adodb-ibase.inc.php`, `adodb-informix.inc.php`, `adodb-informix72.inc`, `adodb-mssql.inc.php`, `adodb-mssqlpo.inc.php`, `adodb-mysql.inc.php`, `adodb-mysqlt.inc.php`, `adodb-oci8.inc.php`, `adodb-oci805.inc.php`, `adodb-oci8po.inc.php`, and `adodb-odbc.inc.php`, as well as the `lib/system/` directory and other `lib/` directories, to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AngelineCMS versions 0.6.5 and earlier **Description** A SQL injection issue might allow remote attackers to execute arbitrary SQL commands via the query string. **Recommendations** For AngelineCMS versions 0.6.5 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Servous sBLOG version 0.7.2 **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `keyword` parameter in the "search.php" file. This can also trigger path disclosure. **Recommendations** For Servous sBLOG version 0.7.2, consider restricting access to the `search.php` file or the `keyword` parameter to minimize the risk of exploitation until a patch is available.

**Name of the Vulnerable Software and Affected Versions** geoBlog version 1.0 **Description** The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary web script or HTML via the `cat` parameter in the "viewcat.php" file. **Recommendations** For geoBlog version 1.0, consider restricting access to the vulnerable "viewcat.php" file until a patch is available, and avoid using the `cat` parameter in this file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** UnrealIRCd versions 3.2 and possibly other versions **Description** The issue concerns a weak hashing scheme used in the IP cloaking feature, which could allow remote attackers to use brute force methods to gain other users' IP addresses. **Recommendations** For version 3.2, consider disabling the IP cloaking feature until a more secure hashing scheme is implemented. For other possibly affected versions, the same recommendation applies: disable the IP cloaking feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.