Droidu

**Name of the Vulnerable Software and Affected Versions** Centova Cast version 3.2.11 **Description** An authenticated attacker can retrieve arbitrary system files. This is possible through the `server.copyfile` API endpoint by supplying crafted parameters. Attackers can download sensitive files, such as /etc/passwd, using tools like curl and wget. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Centova Cast version 3.2.12 **Description** The software contains a denial of service issue that allows attackers to overwhelm the system. This is achieved by repeatedly calling the database export API endpoint. Attackers can trigger 100% CPU load by sending multiple concurrent requests to the `/api.php` endpoint with crafted parameters. **Recommendations** Apply a fix or update to a newer version that addresses this vulnerability. As a temporary workaround, consider limiting the rate of requests to the `/api.php` endpoint.