B1Ackc4T

**Name of the Vulnerable Software and Affected Versions** GalleryCMS version 2.0 **Description** A stored cross-site scripting (XSS) issue exists in the `/index.php/album/add` endpoint of GalleryCMS, allowing attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the `album name` parameter. **Recommendations** For GalleryCMS version 2.0, consider disabling the `/index.php/album/add` endpoint until a patch is available, and restrict the use of the `album name` parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Jizhicms version 1.9.5 **Description** A Server-Side Request Forgery (SSRF) issue was discovered in Jizhicms. The issue is related to the "/admin.php/Plugins/update.html" API endpoint. This allows for potential exploitation by making the server send requests to arbitrary locations. **Recommendations** For Jizhicms version 1.9.5, as a temporary workaround, consider restricting access to the "/admin.php/Plugins/update.html" endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Typemill version 1.5.3 **Description** The issue allows attackers to execute arbitrary code via a crafted PHP file, exploiting an arbitrary file upload vulnerability through the `upload` function. **Recommendations** For Typemill version 1.5.3, consider disabling the `upload` function until a patch is available to prevent exploitation of the arbitrary file upload vulnerability.