Antisecurity

**Name of the Vulnerable Software and Affected Versions** NP Gallery plugin version 0.94 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `id` parameter in a plugin action within the index.php file of the NP Gallery plugin. **Recommendations** For NP Gallery plugin version 0.94, avoid using the `id` parameter in the affected plugin action until the issue is resolved. Consider restricting access to the index.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nucleus NP Gallery plugin version 0.94 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `DIR NUCLEUS` parameter. This is a PHP remote file inclusion vulnerability in the NP Gallery plugin for Nucleus. **Recommendations** For Nucleus NP Gallery plugin version 0.94, consider disabling the `NP Gallery` plugin until a patch is available to prevent exploitation. Restrict access to the `NP gallery.php` file to minimize the risk of arbitrary PHP code execution. Avoid using the `DIR NUCLEUS` parameter in the affected plugin until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Anodyne Productions SIMM Management System (SMS) version 2.6.10 **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in the `page` parameter to "index.php". This can occur when `magic quotes gpc` is disabled. **Recommendations** For version 2.6.10, consider disabling the use of the `page` parameter in "index.php" until a patch is available, or enable `magic quotes gpc` to prevent the exploitation of this issue.

**Name of the Vulnerable Software and Affected Versions** Nucleus NP Twitter Plugin versions 0.8 through 0.9 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `DIR PLUGINS` parameter when `register globals` is enabled. **Recommendations** For Nucleus NP Twitter Plugin versions 0.8 through 0.9, consider disabling the `NP Twitter` plugin until a patch is available. Restrict access to the `nucleus/plugins/NP Twitter.php` file to minimize the risk of exploitation. Avoid using the `DIR PLUGINS` parameter in affected configurations until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Symphony CMS version 2.0.7 **Description** The issue allows remote attackers to read arbitrary files and possibly have other unspecified impacts via a .. (dot dot) in the `mode` parameter of the index.php file. **Recommendations** For Symphony CMS version 2.0.7, consider restricting access to the index.php file until a patch is available. As a temporary workaround, avoid using the `mode` parameter in the index.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** JE CMS versions 1.0.0 through 1.1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `categoryid` parameter in a "viewcategory" action. **Recommendations** For JE CMS versions 1.0.0 through 1.1, avoid using the `categoryid` parameter in the "viewcategory" action until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Joomla! Fabrik component version 2.0 **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. (dot dot) in the `controller` parameter to the "index.php" endpoint. **Recommendations** For version 2.0 of the Fabrik component, consider disabling the vulnerable component until a patch is available. Restrict access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the `controller` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Joomla! com datafeeds component build 880 **Description** A directory traversal issue allows remote attackers to read arbitrary files by using a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For Joomla! com datafeeds component build 880, consider restricting access to the vulnerable component until a patch is available. As a temporary workaround, avoid using the `controller` parameter in the "index.php" endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** J!WHMCS Integrator (com jwhmcs) version 1.5.0 for Joomla! **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For version 1.5.0, consider restricting access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the `controller` parameter with unvalidated input until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Joomla Flickr (com joomlaflickr) component version 1.0.3 **Description** The issue allows remote attackers to include and execute arbitrary local files. This is achieved by using a .. (dot dot) in the `controller` parameter to the "index.php" endpoint. **Recommendations** For version 1.0.3, consider restricting access to the `controller` parameter in the "index.php" endpoint until a patch is available. As a temporary workaround, avoid using the `controller` parameter with untrusted input.

**Name of the Vulnerable Software and Affected Versions** BeeHeard versions 1.0 BeeHeard Lite versions 1.0 **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by using a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For BeeHeard version 1.0, avoid using the `controller` parameter in the "index.php" endpoint until the issue is resolved. For BeeHeard Lite version 1.0, restrict access to the "index.php" endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** com multimap component version 1.0 for Joomla! **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For com multimap component version 1.0, update the component to a version that fixes this issue or consider disabling the vulnerable component until a patch is available. Restrict access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the `controller` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Joomla! component com gadgetfactory versions 1.0.0 through 1.5.0 **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For versions 1.0.0 through 1.5.0, consider restricting access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the `controller` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Deluxe Blog Factory (com blogfactory) version 1.1.2 **Description** The issue allows remote attackers to read arbitrary files via a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For Deluxe Blog Factory (com blogfactory) version 1.1.2, consider updating to a newer version that addresses this issue, if available. As a temporary workaround, restrict access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the `controller` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Joomla! OrgChart (com orgchart) component version 1.0.0 **Description** A directory traversal issue exists in the OrgChart component for Joomla!, allowing remote attackers to read arbitrary files. This is achieved by including a .. (dot dot) in the `controller` parameter to the "index.php" endpoint. **Recommendations** For version 1.0.0, consider restricting access to the "index.php" endpoint until a patch is available. As a temporary workaround, avoid using the `controller` parameter in the affected endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Joomla! component com drawroot version 1.1 **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files and possibly have other unspecified impacts. This is achieved by using a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For version 1.1, consider disabling the com drawroot component until a patch is available to prevent exploitation. Restrict access to the "index.php" endpoint to minimize the risk of directory traversal attacks. Avoid using the `controller` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Joomla! component com market versions 2.x **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files and possibly have other unspecified impacts. This is achieved by using a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For version 2.x, update to a version that includes a fix for this issue. If no specific fix is provided for version 2.x, consider disabling the com market component until a patch is available. Restrict access to the "index.php" endpoint to minimize the risk of exploitation. Avoid using the `controller` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Joomla! component com if surfalert version 1.2 **Description** A directory traversal issue in the com if surfalert component allows remote attackers to read arbitrary files, and possibly have other unspecified impacts, by using a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For version 1.2, as a temporary workaround, consider restricting access to the "index.php" endpoint until a patch is available. Avoid using the `controller` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Joomla! component com mtfireeagle version 1.2 **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files and possibly have other unspecified impacts. This is achieved by using a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For version 1.2, consider restricting access to the "index.php" endpoint until a patch is available, and avoid using the `controller` parameter with dot dot notation to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Joomla! component Online Examination (com onlineexam) version 1.5.0 **Description** A directory traversal issue exists, allowing remote attackers to read arbitrary files. This is achieved by including a .. (dot dot) in the `controller` parameter to "index.php". **Recommendations** For version 1.5.0, consider restricting access to the "index.php" endpoint until a patch is available. As a temporary workaround, avoid using the `controller` parameter in the affected endpoint to minimize the risk of exploitation.