Anthony Maia

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered that allows for Stored XSS via the optional message field of a file request. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, consider restricting access to the file request feature until a patch is available, and avoid using the optional message field to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered where an attacker can exploit missing authorization on the FlexPaperViewer SWF reader. This allows the attacker to export files that should have been restricted, via vectors involving page-by-page access to a document in SWF format. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, consider restricting access to the FlexPaperViewer SWF reader until a patch is available. As a temporary workaround, limit page-by-page access to documents in SWF format to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered in the software, where there is anonymous reflected XSS on the error page via a "/share/error?message=" URI. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, as a temporary workaround, consider restricting access to the "/share/error" API endpoint until a patch is available. Avoid using the `message` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered that allows for Stored XSS on the file or folder download pop-up. This occurs via a crafted file or folder name. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, consider restricting the ability to create files or folders with crafted names as a temporary workaround until a patch is available.

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered that allows enumeration of users through the password-reset feature. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, consider restricting access to the password-reset feature as a temporary workaround until a patch is available.

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered that allows improper authorization when listing the history of another user. This is achieved by modifying the `vaultize session id` value in a cookie. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, consider restricting access to sensitive user history until a proper authorization mechanism is implemented. As a temporary workaround, avoid using the modified `vaultize session id` value in a cookie to prevent unauthorized access. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered that allows improper authorization, leading to the creation of folders within another account via a modified `device` value. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, consider restricting access to folder creation functionality until a patch is available. As a temporary workaround, monitor account activity for unauthorized folder creation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Vaultize Enterprise File Sharing version 17.05.31 Description: An issue was discovered where there is a cross-site scripting (XSS) vulnerability in the invitation mail received from a different user. This user can modify the HTML in the mail before sending it, potentially leading to XSS attacks. Recommendations: For Vaultize Enterprise File Sharing version 17.05.31, consider disabling the feature that allows users to modify the HTML in invitation mails until a patch is available. Restrict access to the mail invitation feature to minimize the risk of exploitation.