Cyb3R-1St

**Name of the Vulnerable Software and Affected Versions** Team PHP PHP Classifieds Script (affected versions not specified) **Description** The issue allows remote attackers to obtain database credentials due to insufficient access control of sensitive information stored under the web root. This can be achieved via a direct request for the `admin/backup/datadump.sql` file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AvailScript Jobs Portal Script (affected versions not specified) **Description** The issue concerns an unrestricted file upload vulnerability. This allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as an image or logo, then accessing it via a direct request to the file in an unspecified directory. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PowerUpload version 2.4 **Description** The issue allows remote attackers to bypass authentication and gain administrative access. This is achieved by using a MIME encoded value of 'admin' for the `myadminname` cookie. **Recommendations** For PowerUpload version 2.4, as a temporary workaround, consider restricting access to administrative functions until a patch is available. Avoid using the `myadminname` cookie with a MIME encoded 'admin' value in the affected system until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Joomla! component com aclassf version 5.6.2 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter to the "index.php" endpoint. **Recommendations** For version 5.6.2, avoid using the `id` parameter in the affected endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: VidSharePro (affected versions not specified) Description: The issue allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors. This is due to an unrestricted file upload vulnerability. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Easy Scripts Answer and Question Script (affected versions not specified) Description: The issue concerns the `myaccount.php` file, which fails to verify the original password before allowing password changes. This allows remote attackers to change the password of other users, potentially gaining privileges. The attack can be carried out by modifying the `userid`, `txtpassword`, and `txtRpassword` parameters. Recommendations: For Easy Scripts Answer and Question Script, as a temporary workaround, consider disabling the password change functionality in the `myaccount.php` file until a proper fix is implemented. Restrict access to the `myaccount.php` file to minimize the risk of exploitation. Avoid using the `userid`, `txtpassword`, and `txtRpassword` parameters in the affected `myaccount.php` file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Easy Scripts Answer and Question Script (affected versions not specified) Description: The issue allows remote attackers to remove arbitrary user accounts by modifying the `userid` parameter in the 'myaccount.php' file. This can be done without specifying any additional fields. Recommendations: For all affected versions, consider restricting access to the 'myaccount.php' file until a patch is available. As a temporary workaround, avoid using the `userid` parameter in the 'myaccount.php' file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Easy Scripts Answer and Question Script (affected versions not specified) Description: The issue concerns an unrestricted file upload vulnerability. This allows remote attackers to execute arbitrary code by uploading a file with an executable extension and then accessing it directly. The vulnerability is specifically found in the myaccount.php file, where attackers can upload files to the uploads/[username] directory. Recommendations: For all affected versions, consider restricting file uploads to only allow non-executable file extensions as a temporary mitigation measure. Restrict access to the uploads/[username] directory to minimize the risk of exploitation. Avoid using the myaccount.php file for file uploads until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Easy Scripts Answer and Question Script (affected versions not specified) Description: The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the `questionid` parameter in the "questiondetail.php" file. Recommendations: For all affected versions, consider restricting access to the vulnerable "questiondetail.php" file until a patch is available. As a temporary workaround, avoid using the `questionid` parameter in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Easy Scripts Answer and Question Script (affected versions not specified) Description: The issue concerns SQL injection vulnerabilities in the myaccount.php file. These vulnerabilities allow remote authenticated users to execute arbitrary SQL commands. The vulnerabilities can be exploited via the `userid` parameter and the password. Recommendations: For all affected versions, consider restricting access to the myaccount.php file until a patch is available. As a temporary workaround, avoid using the `userid` parameter in the affected file to minimize the risk of exploitation. Additionally, restrict the use of password inputs in myaccount.php to reduce the risk of SQL injection attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DevelopItEasy Events Calendar version 1.2 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the "user name" parameter to "admin/index.php", the "user pass" parameter to "admin/index.php", or the `id` parameter to "calendar details.php". **Recommendations** For DevelopItEasy Events Calendar version 1.2, consider restricting access to the vulnerable parameters `user name` and `user pass` in the "admin/index.php" endpoint, as well as the `id` parameter in the "calendar details.php" endpoint, until a fix is available.

**Name of the Vulnerable Software and Affected Versions** VidiScript (affected versions not specified) **Description** The issue concerns an unrestricted file upload vulnerability in the profile feature. This allows registered remote authenticated users to execute arbitrary code by uploading a PHP file as an Avatar and then accessing it via a direct request. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mole Group Taxi Map Script (aka Taxi Calc Dist Script) (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `user` field in the login.php file. This can potentially lead to unauthorized access and manipulation of database content. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: DevelopItEasy Photo Gallery version 1.2 Description: The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via several parameters: the `cat id` parameter to "gallery category.php", the `photo id` parameter to "gallery photo.php", and the `user name` and `user pass` parameters to "admin/index.php". Recommendations: For DevelopItEasy Photo Gallery version 1.2, consider restricting access to the vulnerable parameters `cat id`, `photo id`, `user name`, and `user pass` until a patch is available. As a temporary workaround, avoid using these parameters in the affected API endpoints.

Name of the Vulnerable Software and Affected Versions: Social Groupie (affected versions not specified) Description: The issue concerns an unrestricted file upload vulnerability. This allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension to Photos/create album.php, and then accessing it via a direct request to the file in Member images/. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Social Groupie (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary SQL commands via the `id` parameter in the "group index.php" file. This can lead to unauthorized access and manipulation of database content. Recommendations: For Social Groupie, consider restricting access to the "group index.php" file until a patch is available. As a temporary workaround, avoid using the `id` parameter in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Mole Group Airline Ticket Sale Script (affected versions not specified) Description: A SQL injection issue in the info.php file of the Mole Group Airline Ticket Sale Script allows remote attackers to execute arbitrary SQL commands via the `flight` parameter. The vendor has disputed this issue. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Hispah Text Links Ads version 1.1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `idcat` parameter in the "index.php" file. **Recommendations** For Hispah Text Links Ads version 1.1, consider restricting access to the "index.php" file or avoiding the use of the `idcat` parameter until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Joomla! component com tech article version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `item` parameter to the `/index.php` API endpoint. **Recommendations** For version 1.0 of the com tech article component, avoid using the `item` parameter in the `/index.php` endpoint until the issue is resolved. Consider temporarily restricting access to the com tech article component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Jokes Complete Website version 2.1.3 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `jokeid` parameter in the "joke.php" file. **Recommendations** For version 2.1.3, avoid using the `jokeid` parameter in the joke.php file until the issue is resolved. Consider temporarily restricting access to the joke.php file to minimize the risk of exploitation.