B3Xal

**Name of the Vulnerable Software and Affected Versions** Gandia Integra Total versions 2.1.2217.3 through 4.4.2236.1 **Description** A SQL injection vulnerability exists in Gandia Integra Total. The vulnerability allows an authenticated attacker to retrieve, create, update, and delete databases through the `idestudio` parameter in the `/encuestas/integraweb[ v4]/integra/html/view/consultaincimails.php` API endpoint. **Recommendations** Versions 2.1.2217.3 through 4.4.2236.1 are affected. As a temporary workaround, restrict access to the `/encuestas/integraweb[ v4]/integra/html/view/consultaincimails.php` endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Gandia Integra Total versions 2.1.2217.3 through 4.4.2236.1 **Description** A SQL injection issue exists in Gandia Integra Total. An authenticated attacker can retrieve, create, update, and delete databases through the `idestudio` parameter in the `/encuestas/integraweb[ v4]/integra/html/view/consultacuotasred.php` API endpoint. **Recommendations** Versions prior to 2.1.2217.3 are recommended. Versions between 2.1.2217.3 and 4.4.2236.1 are recommended to be updated.

Name of the Vulnerable Software and Affected Versions: IceWarp Mail Server version 11.4.0 Description: The issue is an open redirection vulnerability that allows an attacker to redirect a user to any domain by sending a malicious URL to the victim. For example, an attacker could use a URL like "https://icewarp.domain.com//<MALICIOUS DOMAIN>/%2e%2e" or "https://icewarp.domain.com///%2e%2e" to exploit this issue. This vulnerability has been tested in Firefox. Recommendations: For IceWarp Mail Server version 11.4.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Icwarp Mail Server version 11.4.0 Description: The issue allows for HTTP host header injection, enabling the execution of arbitrary JavaScript code on page load when a user interacts with a malicious link. This is achieved by modifying the Host header and adding a payload. Recommendations: For Icewarp Mail Server version 11.4.0, consider restricting access to the Host header modification functionality until a patch is available. As a temporary workaround, avoid using links from untrusted sources to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Icewarp Mail Server version 11.4.0 Description: The issue is related to cross-site scripting (XSS) that allows an attacker to modify the `lastLogin` cookie with malicious JavaScript code. This code will be executed when the page is rendered. Recommendations: For Icewarp Mail Server version 11.4.0, consider updating to a newer version that contains a fix for this issue, as no specific mitigation measures are provided for this version. At the moment, there is no information about a newer version that contains a fix for this vulnerability.