Alphanix

Name of the Vulnerable Software and Affected Versions: ASP SiteWare autoDealer versions 1 and 2 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `iType` parameter in specific API endpoints, namely ("Auto1/type.asp" or "auto2/type.asp"). Recommendations: For ASP SiteWare autoDealer version 1, avoid using the `iType` parameter in the "Auto1/type.asp" endpoint until the issue is resolved. For ASP SiteWare autoDealer version 2, avoid using the `iType` parameter in the "auto2/type.asp" endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** ASP Product Catalog version 1.0 **Description** The issue allows remote attackers to download a database containing user credentials due to insufficient access control. This is possible via a direct request for the database file. **Recommendations** For ASP Product Catalog version 1.0, consider restricting access to the database file to minimize the risk of exploitation. As a temporary workaround, limit direct requests to the database/aspProductCatalog.mdb file until a more secure configuration or update is available.

**Name of the Vulnerable Software and Affected Versions** ASP Product Catalog version 1.0 **Description** A cross-site scripting issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the `keywords` parameter in the "search.asp" page. **Recommendations** For ASP Product Catalog version 1.0, consider restricting access to the `keywords` parameter in the search.asp page until a patch is available. As a temporary workaround, avoid using the `keywords` parameter in the affected page to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mini-stream Shadow Stream Recorder version 3.0.1.7 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This can be achieved by using a long URI in a playlist (.m3u) file. **Recommendations** For Mini-stream Shadow Stream Recorder version 3.0.1.7, update to a newer version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ASP User Engine.NET (affected versions not specified) **Description** The issue allows remote attackers to download a database via a direct request for users.mdb, as sensitive information is stored under the web root with insufficient access control. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CodefixerSoftware MailingListPro Free Edition (affected versions not specified) Description: The issue allows remote attackers to obtain sensitive information due to insufficient access control. Sensitive information is stored under the web root, making it accessible via a direct request to "db/MailingList.mdb". Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: The Net Guys ASPired2poll (affected versions not specified) Description: The issue allows remote attackers to download a database containing usernames and passwords via a direct request to `ASPired2poll.mdb` due to insufficient access control. This is because sensitive information is stored under the web root. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: The Net Guys ASPired2Protect (affected versions not specified) Description: The issue concerns the storage of sensitive information under the web root with insufficient access control. This allows remote attackers to download a database containing the `username` and `password` via a direct request to the `ASPired2Protect.mdb` file. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CF Calendar (affected versions not specified) Description: A SQL injection issue exists in the calendarevent.cfm file of CF Calendar, allowing remote attackers to execute arbitrary SQL commands by manipulating the `calid` parameter in the "/calendarevent.cfm" endpoint. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CF Shopkart version 5.2.2 Description: The issue allows remote attackers to obtain sensitive information, such as usernames and passwords, due to insufficient access control of the cfshopkart52.mdb file stored under the web root. This can be achieved via a direct request. Recommendations: For CF Shopkart version 5.2.2, consider restricting access to the cfshopkart52.mdb file to prevent direct requests and minimize the risk of sensitive information disclosure.

Name of the Vulnerable Software and Affected Versions: CF Shopkart version 5.2.2 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `Category` parameter in a "ViewCategory" action within the index.cfm file. Recommendations: For CF Shopkart version 5.2.2, consider restricting access to the `Category` parameter in the "ViewCategory" action until a patch is available. As a temporary workaround, avoid using the `Category` parameter in the affected index.cfm file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: CF Forum (affected versions not specified) Description: A SQL injection issue exists in the forummessages.cfm file of CF Forum, allowing remote attackers to execute arbitrary SQL commands by manipulating the `categorynbr` parameter in the API endpoint. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CF Auction (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `categorynbr` parameter in the `forummessages.cfm` file. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CFMBlog (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `categorynbr` parameter in the "index.cfm" file. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Jay Patel Pixel8 Web Photo Album version 3.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `AlbumID` parameter in the "Photo.asp" file. **Recommendations** For Jay Patel Pixel8 Web Photo Album version 3.0, consider restricting access to the `AlbumID` parameter in the Photo.asp file until a patch is available. As a temporary workaround, avoid using the `AlbumID` parameter in the affected endpoint.

**Name of the Vulnerable Software and Affected Versions** Elecard AVC HD PLAYER version 5.5.90116 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This can be achieved by using an M3U file that contains a long string in a URL. **Recommendations** For Elecard AVC HD PLAYER version 5.5.90116, consider avoiding the use of M3U files with long strings in URLs until a patch is available. As a temporary workaround, restrict the handling of M3U files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Active Business Directory 2 **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `catid` parameter in the "default.asp" file. **Recommendations** For Active Business Directory 2, consider restricting access to the `catid` parameter in the default.asp file until a patch is available. As a temporary workaround, avoid using the `catid` parameter in the affected endpoint.

**Name of the Vulnerable Software and Affected Versions** PacPoll version 4.0 **Description** The issue allows remote attackers to download a database due to insufficient access control of sensitive information stored under the web root. This can be achieved by making a direct request for specific database files, such as `poll.mdb` or `poll97.mdb`. **Recommendations** For PacPoll version 4.0, consider restricting access to the database files `poll.mdb` and `poll97.mdb` to prevent unauthorized downloads until a proper fix is applied. Additionally, review and implement proper access controls for sensitive information stored under the web root.

**Name of the Vulnerable Software and Affected Versions** Click&Rank (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via several API endpoints, including "hitcounter.asp", "user delete.asp", and "user update.asp" using the `id` parameter, "admin login.asp" using the `userid` parameter (also referred to as the USERNAME field in "admin.asp"), and "admin login.asp" using the `PassWord` parameter (also referred to as the PASSWORD field in "admin.asp"). **Recommendations** For Click&Rank, consider restricting access to the `id` parameter in "hitcounter.asp", "user delete.asp", and "user update.asp" until a patch is available. As a temporary workaround, restrict the use of the `userid` parameter in "admin login.asp" to minimize the risk of exploitation. Avoid using the `PassWord` parameter in "admin login.asp" until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ClickAndEmail (affected versions not specified) **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `tablename` parameter in an update action. This occurs in the admin dblayers.asp file. **Recommendations** As a temporary workaround, consider restricting access to the `tablename` parameter in the update action until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.