Cyber-Zone

**Name of the Vulnerable Software and Affected Versions** LucVil PatPlayer version 3.9 **Description** The issue allows remote attackers to cause a denial of service or execute arbitrary code via a long URI in a playlist file. **Recommendations** For version 3.9, consider avoiding the use of long URIs in playlist files until a patch is available. As a temporary workaround, restrict access to potentially malicious playlist files to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: ExoPHPDesk version 1.2 Final Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `username` (`user` parameter) in the admin.php file. Recommendations: For ExoPHPDesk version 1.2 Final, consider updating to a newer version that addresses this issue, or as a temporary workaround, restrict access to the admin.php file to minimize the risk of exploitation. Avoid using the `username` parameter in the affected admin.php file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Sorinara Streaming Audio Player version 0.9 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by providing a long string in a playlist (.m3u) file. **Recommendations** For version 0.9, update to a newer version that contains a fix for this issue, as using a long string in a playlist file can lead to arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Dian Gemilang DGNews version 3.0 Beta Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in a "detail" action, specifically in the berita.php file. Recommendations: For Dian Gemilang DGNews version 3.0 Beta, avoid using the `id` parameter in the detail action of the berita.php file until a fix is available. Consider restricting access to the berita.php file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Battle Blog version 1.25 Description: The issue concerns an unrestricted file upload vulnerability. This allows remote attackers to execute arbitrary code by uploading a file with an executable extension and then accessing it via a direct request to the file. Recommendations: For Battle Blog version 1.25, consider restricting file uploads to only allow non-executable file types as a temporary workaround until a patch is available. Restrict access to the admin/uploadform.asp module to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Pre Real Estate Listings (affected versions not specified) Description: A SQL injection issue exists, allowing remote attackers to execute arbitrary SQL commands via the `username1` parameter in the manager/login.php file. This parameter is also known as the Admin field or Username field. Recommendations: For all affected versions, consider restricting access to the manager/login.php file until a fix is available. As a temporary workaround, avoid using the `username1` parameter in the login functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: nicLOR Vibro-School-CMS (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `nID` parameter in the "view news.php" file. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Apollo 37zz (affected versions not specified) **Description** The issue is related to a heap-based buffer overflow that can be triggered by a long URI in a playlist (.m3u) file, potentially allowing remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mini-stream RM Downloader version 3.0.0.9 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by using a long URI in a playlist (.m3u) file. **Recommendations** For Mini-stream RM Downloader version 3.0.0.9, consider avoiding the use of long URIs in playlist files until a patch is available. As a temporary workaround, restrict the processing of .m3u files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mini-stream WM Downloader version 3.0.0.9 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by providing a long URI in a playlist (.m3u) file. **Recommendations** For Mini-stream WM Downloader version 3.0.0.9, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Mini-stream ASX to MP3 Converter version 3.0.0.7 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by providing a long URI in a playlist (.m3u) file. **Recommendations** For Mini-stream ASX to MP3 Converter version 3.0.0.7, consider avoiding the use of long URIs in playlist files until a patch is available. As a temporary workaround, restrict the processing of .m3u files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mini-stream RM-MP3 Converter version 3.0.0.7 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file. **Recommendations** For Mini-stream RM-MP3 Converter version 3.0.0.7, avoid using long URIs in playlist files until a patch is available. As a temporary workaround, consider restricting the length of URIs in .m3u files to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Mini-stream Ripper version 3.0.1.1 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by using a long URI in a playlist (.m3u) file. **Recommendations** For Mini-stream Ripper version 3.0.1.1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ColdFusion (affected versions not specified) **Description** The issue concerns the Red Reservations script for ColdFusion, which stores sensitive information under the web root with insufficient access control. This allows remote attackers to download the database via a direct request to API endpoints such as "/makered.mdb" and "/makered97.mdb". **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SoftComplex PHP Image Gallery version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `Admin` field in a login action in the `index.php` file. **Recommendations** For SoftComplex PHP Image Gallery version 1.0, consider validating and sanitizing user input to prevent SQL injection attacks, specifically for the `Admin` field in login actions. As a temporary workaround, restrict access to the `index.php` file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Active Web Helpdesk version 2.0 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `CategoryID` parameter in the "default.aspx" page, enabling attackers to inject SQL code. Recommendations: For Active Web Helpdesk version 2.0, consider restricting access to the `CategoryID` parameter in the default.aspx page until a patch is available. As a temporary workaround, avoid using the `CategoryID` parameter in the affected page to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Ocean12 Membership Manager Pro (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary SQL commands via the `Password` parameter in the "login.asp" file. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Ocean12 Membership Manager Pro (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary SQL commands via the `username` parameter in the "login.asp" file. This enables attackers to manipulate the database by injecting malicious SQL code. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: evCal Events Calendar (affected versions not specified) Description: The issue concerns the storage of sensitive information under the web root with insufficient access control. This allows remote attackers to download a database containing usernames and passwords via direct requests to API endpoints such as "/evcal.mdb" and "/evcal97.mdb". Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Quick Tree View .NET version 3.1 Description: The issue allows remote attackers to download the database file due to insufficient access control. Sensitive information is stored under the web root, which can be accessed via a direct request to the "qtv.mdb" file. Recommendations: For Quick Tree View .NET version 3.1, consider restricting access to the "qtv.mdb" file to minimize the risk of exploitation. As a temporary workaround, limit direct requests to this file until a more permanent solution is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.