Bruno Menna

**Name of the Vulnerable Software and Affected Versions** Huly Platform version 0.6.295 **Description** The issue allows attackers to execute arbitrary code by uploading a crafted HTML file into a chat group, potentially leading to code execution. **Recommendations** For Huly Platform version 0.6.295, consider restricting the upload of HTML files into chat groups until a patch is available. As a temporary workaround, disabling the file upload feature in chat groups may help minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Huly Platform version 0.6.295 **Description** The issue allows attackers to execute arbitrary code by uploading a crafted HTML file into the tracker comments page, potentially leading to code execution. **Recommendations** For Huly Platform version 0.6.295, consider restricting access to the file upload feature in the tracker comments page until a patch is available. As a temporary workaround, avoid using the file upload functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Volmarg Personal Management System version 1.4.64 **Description** The issue concerns stored cross site scripting (XSS) via the upload of an SVG file that contains embedded JavaScript code. This allows for the potential execution of malicious scripts when the uploaded file is accessed. **Recommendations** For Volmarg Personal Management System version 1.4.64, consider disabling the upload of SVG files or restricting the execution of JavaScript code within uploaded files until a patch is available. As a temporary workaround, restrict access to the file upload feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Volmarg Personal Management System version 1.4.64 **Description** The Volmarg Personal Management System is vulnerable to Server Side Request Forgery (SSRF) via uploading a SVG file. This allows the server to make unintended HTTP and DNS requests to a server controlled by the attacker. **Recommendations** For version 1.4.64, consider disabling the SVG file upload feature until a patch is available to prevent unintended HTTP and DNS requests. Restrict access to the affected module to minimize the risk of exploitation. Avoid using the vulnerable feature in the affected system until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Huly Platform version 0.6.202 **Description** The issue allows attackers to execute arbitrary code via the upload of a crafted SVG file to issues, which is a result of a Cross Site Scripting vulnerability. **Recommendations** For Huly Platform version 0.6.202, consider restricting the upload of SVG files to issues until a patch is available. As a temporary workaround, disabling the ability to upload files to issues may help minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Leantime version 3.0.6 **Description** The issue allows attackers to execute arbitrary code via the upload of a crafted PDF file to the "files/browse" endpoint. This enables the execution of malicious scripts, potentially leading to unauthorized access or data manipulation. **Recommendations** For Leantime version 3.0.6, consider disabling the file upload feature to the "files/browse" endpoint until a patch is available. Restrict access to this endpoint to minimize the risk of exploitation. Avoid using the file upload feature in this version until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Twenty version 0.3.0 **Description** The CRM platform is vulnerable to server-side request forgery (SSRF) via file upload. This issue allows an attacker to potentially access internal resources or make unauthorized requests. **Recommendations** For version 0.3.0, consider disabling the file upload feature until a patch is available to prevent exploitation of the SSRF vulnerability. Restrict access to sensitive internal resources to minimize the risk of unauthorized access.

**Name of the Vulnerable Software and Affected Versions** Twenty version 0.3.0 **Description** The CRM platform is vulnerable to stored cross-site scripting via file upload. A crafted svg file can trigger the execution of the javascript code. **Recommendations** For version 0.3.0, consider disabling the file upload feature until a patch is available. Restrict access to uploaded files to minimize the risk of exploitation. Avoid using the file upload functionality with svg files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Leantime version 3.0.6 **Description** A Cross Site Scripting issue allows a remote attacker to execute arbitrary code via the `to-do title` parameter. This enables the attacker to perform unauthorized actions on the affected system. **Recommendations** For Leantime version 3.0.6, as a temporary workaround, consider restricting the use of the to-do title parameter until a patch is available. Avoid using the `to-do title` parameter in affected API endpoints or user input fields to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** hcengineering Huly Platform version 0.6.202 **Description** The issue allows attackers to run arbitrary code via the upload of a crafted SVG file, exploiting a Server Side Request Forgery (SSRF) vulnerability. **Recommendations** For version 0.6.202, consider restricting the upload of SVG files or implementing validation to prevent the upload of crafted files until a patch is available. As a temporary workaround, disabling the SVG file upload feature may help minimize the risk of exploitation.