Adriá Bonilla Martin

Name of the Vulnerable Software and Affected Versions: idoit pro version 28 Description: The issue is a SQL injection vulnerability that could allow an attacker to send a specially crafted query to the ID parameter in /var/www/html/src/classes/modules/api/model/cmdb/isys api model cmdb objects by relation.class.php and retrieve all the information stored in the database. This vulnerability could be exploited remotely. Recommendations: For idoit pro version 28, update the software to a version that includes a fix for this issue. As a temporary workaround, consider restricting access to the vulnerable API endpoint `/var/www/html/src/classes/modules/api/model/cmdb/isys api model cmdb objects by relation.class.php` to minimize the risk of exploitation. Avoid using the `ID` parameter in the affected API endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: idoit pro version 28 Description: A Cross-site Scripting (XSS) issue allows an attacker to retrieve session details of an authenticated user due to the lack of proper sanitization of the following parameters: `id`, `lang`, `mNavID`, `name`, `pID`, `treeNode`, `type`, `view`. This enables the attacker to potentially exploit the session details for malicious purposes. Recommendations: For idoit pro version 28, consider disabling or restricting access to the parameters `id`, `lang`, `mNavID`, `name`, `pID`, `treeNode`, `type`, `view` until a patch is available to prevent the exploitation of this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.