Diogo Real

**Name of the Vulnerable Software and Affected Versions** Splunk Enterprise versions prior to 10.0.1, 9.4.5, 9.3.7, and 9.2.9 Splunk Cloud Platform versions prior to 10.0.2503.5, 9.3.2411.111, and 9.3.2408.121 **Description** An unauthenticated attacker could construct a malicious URL utilizing the `return to` parameter of the Splunk Web login endpoint. If an authenticated user accesses this URL, it may result in an unvalidated redirect to a malicious external site. Successful exploitation requires the attacker to deceive the victim into initiating a request from their browser. The attacker cannot exploit the issue without user interaction. **Recommendations** Splunk Enterprise versions prior to 10.0.1 should be updated to version 10.0.1 or later. Splunk Enterprise versions prior to 9.4.5 should be updated to version 9.4.5 or later. Splunk Enterprise versions prior to 9.3.7 should be updated to version 9.3.7 or later. Splunk Enterprise versions prior to 9.2.9 should be updated to version 9.2.9 or later. Splunk Cloud Platform versions prior to 10.0.2503.5 should be updated to version 10.0.2503.5 or later. Splunk Cloud Platform versions prior to 9.3.2411.111 should be updated to version 9.3.2411.111 or later. Splunk Cloud Platform versions prior to 9.3.2408.121 should be updated to version 9.3.2408.121 or later.

**Name of the Vulnerable Software and Affected Versions** Download Manager WordPress plugin versions prior to 3.2.39 **Description** The issue allows an attacker to brute force the master key for a download, generated using the `uniqid` php function, with reasonable resources. This gives direct download access, bypassing role-based restrictions or password protections set for the download. **Recommendations** For versions prior to 3.2.39, update to version 3.2.39 or later to resolve the issue. As a temporary workaround, consider restricting access to downloads until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Translate WordPress with GTranslate WordPress plugin versions prior to 2.9.9 **Description** The issue allows an attacker to gain access to a logged-in admin's cookies by making them open a malicious link or page. This is possible due to the lack of a CSRF check in some files and the writing of debug data, such as a user's cookies, to a publicly accessible file when a specific parameter is used in a request. **Recommendations** For versions prior to 2.9.9, update to version 2.9.9 or later to resolve the issue. As a temporary workaround, consider restricting access to the debug data files to minimize the risk of exploitation. Avoid using the specific parameter that triggers the writing of debug data to a publicly accessible file until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Download Manager WordPress plugin versions prior to 3.2.35 **Description** The issue concerns a lack of authorization checks in some REST API endpoints, allowing unauthenticated attackers to call them. This could lead to sensitive information disclosure, including posts passwords and files Master Keys. **Recommendations** For versions prior to 3.2.24, update to version 3.2.24 or later to fix the posts passwords disclosure issue. For versions prior to 3.2.25, update to version 3.2.25 or later to fix the files Master Keys disclosure issue. For versions prior to 3.2.35, update to version 3.2.35 or later to ensure all related issues are resolved.