Bruno Barreirinhas

**Name of the Vulnerable Software and Affected Versions** Orchardproject Orchard CMS version 1.10.3 **Description** The issue allows a low-privileged user, such as an author or publisher, to inject crafted HTML and JavaScript payload in a blog post. This leads to full admin account takeover or privilege escalation when the malicious blog post is loaded in the victim's browser. **Recommendations** For Orchardproject Orchard CMS version 1.10.3, update to a version that fixes the Cross Site Scripting (XSS) issue to prevent admin account takeover or privilege escalation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PyroCMS version 3.9 **Description** The issue allows a low-privileged user, such as an author, to inject crafted HTML and JavaScript payload in a blog post, leading to full admin account takeover or privilege escalation. This is a stored Cross Site Scripting (XSS) issue. **Recommendations** For PyroCMS version 3.9, consider restricting the ability of low-privileged users to inject HTML and JavaScript code in blog posts until a patch is available. As a temporary workaround, disabling the blog post feature for low-privileged users may help minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** DotNetNuke (DNN) version 9.9.1 **Description** The issue concerns a Stored Cross-Site Scripting vulnerability in the user profile biography section. This allows remote authenticated users to inject arbitrary code via a crafted payload. **Recommendations** For DotNetNuke (DNN) version 9.9.1, as a temporary workaround, consider restricting access to the user profile biography section until a patch is available. Avoid using the biography section in user profiles to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.