Blakduk

**Name of the Vulnerable Software and Affected Versions** Mojoportal version 2.7.0.0 **Description** An issue in Mojoportal allows an unauthenticated attacker to register a new user even if the Allow User Registrations feature is disabled. **Recommendations** For Mojoportal version 2.7.0.0, consider disabling the user registration feature until a patch is available. Restrict access to the registration module to minimize the risk of exploitation. Avoid using the affected feature in production environments until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ChurchCRM versions 4.5.3 and below **Description** A stored cross-site scripting (XSS) issue was found in the /api/public/register/family API endpoint. This could potentially allow attackers to inject malicious scripts into the application. **Recommendations** For ChurchCRM versions 4.5.3 and below, update to a version above 4.5.3 to resolve the issue. As a temporary workaround, consider restricting access to the /api/public/register/family API endpoint until a patch is available. Avoid using this endpoint in applications where user input is not properly sanitized.

**Name of the Vulnerable Software and Affected Versions** Mojoportal versions 2.7.0.0 and below **Description** The issue allows an authenticated attacker to list all css files inside the root path of the webserver via manipulation of the `s` parameter in "/DesignTools/ManageSkin.aspx". **Recommendations** For versions 2.7.0.0 and below, consider restricting access to the "/DesignTools/ManageSkin.aspx" endpoint until a patch is available. As a temporary workaround, avoid using the `s` parameter in the affected endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mojoportal version 2.7 **Description** The issue is an authenticated XML external entity (XXE) injection vulnerability. This means that an attacker who has authenticated access to the system can potentially inject malicious XML code to access sensitive data or disrupt the system. **Recommendations** For Mojoportal version 2.7, as a temporary workaround, consider restricting access to XML processing functions until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ChurchCRM versions 4.5.3 and below **Description** The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the `EID` parameter at the "GetText.php" endpoint. **Recommendations** For ChurchCRM versions 4.5.3 and below, update to a version above 4.5.3 to resolve the issue. As a temporary workaround, consider restricting access to the "GetText.php" endpoint to minimize the risk of exploitation. Avoid using the `EID` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** ChurchCRM versions 4.5.3 and below **Description** A SQL injection issue was found in the Event Attendance reports module, specifically via the `Event` parameter. **Recommendations** For ChurchCRM versions 4.5.3 and below, update to a version above 4.5.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** ChurchCRM versions 4.5.3 and below **Description** The issue concerns the CSV Import function, which allows attackers to execute arbitrary code by importing a crafted CSV file. **Recommendations** For ChurchCRM versions 4.5.3 and below, update to a version above 4.5.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Mojoportal version 2.7.0.0 **Description** The issue is a stored cross-site scripting (XSS) vulnerability in the Company Info Settings component. This allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the `txtCompanyName` parameter. **Recommendations** For Mojoportal version 2.7.0.0, as a temporary workaround, consider restricting access to the Company Info Settings component until a patch is available. Avoid using the `txtCompanyName` parameter in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** mojoPortal version 2.7.0.0 **Description** A reflected cross-site scripting (XSS) vulnerability in the FileDialog.aspx component allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the `ed` and `tbi` parameters. This vulnerability exists due to the lack of measures to neutralize special elements used in the operating system command. Exploitation of the vulnerability may allow a remote attacker to conduct a cross-site scripting (XSS) attack. **Recommendations** For mojoPortal version 2.7.0.0, as a temporary workaround, consider disabling the FileDialog.aspx component until a patch is available. Restrict access to the `ed` and `tbi` parameters in the affected API endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Reprise License Manager (RLM) versions prior to 14.2BL4 **Description** The issue is related to a directory traversal vulnerability in the diagnostics function of the Reprise License Manager (RLM) web interface. This vulnerability allows RLM users with sufficient privileges to overwrite any file on the server. **Recommendations** For versions prior to 14.2BL4, update to version 14.2BL4 or later to resolve the issue. As a temporary workaround, consider restricting access to the diagnostics function in the RLM web interface to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Reprise License Manager (RLM) versions through 14.2BL4 **Description** The issue concerns a CRLF vulnerability in the Reprise License Manager (RLM) web interface. This vulnerability is located in the `password` parameter of the View License Result function, allowing remote attackers to inject arbitrary HTTP headers. **Recommendations** For versions through 14.2BL4, consider restricting access to the View License Result function until a patch is available. As a temporary workaround, avoid using the `password` parameter in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Reprise License Manager (RLM) versions through 14.2BL4 **Description** A Server-Side Request Forgery (SSRF) issue was discovered in the Reprise License Manager (RLM) web interface, allowing remote attackers to trigger outbound requests to intranet servers and conduct port scans. This is achieved via the `actserver` parameter in the License Activation function. **Recommendations** For versions through 14.2BL4, as a temporary workaround, consider restricting access to the License Activation function to minimize the risk of exploitation. Avoid using the `actserver` parameter in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.