Encrypt3D.M!Nd

**Name of the Vulnerable Software and Affected Versions** TechSmith Snagit versions 10.x through 11.x **Description** The issue allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks. This can be achieved via a Trojan horse dwmapi.dll located in the same folder as a snag, snagcc, or snagprof file. **Recommendations** For versions 10.x through 11.x, update to a version that is not affected by this issue, as no specific fix is provided for these versions. As a temporary workaround, consider restricting access to the dwmapi.dll file to minimize the risk of exploitation. Avoid executing files from untrusted sources, and ensure that all files are scanned for malware before execution.

**Name of the Vulnerable Software and Affected Versions** W3C Amaya Web Browser version 11.1 **Description** A stack-based buffer overflow issue allows remote attackers to execute arbitrary code via a script tag with a long `defer` attribute. **Recommendations** For W3C Amaya Web Browser version 11.1, consider disabling the execution of scripts with long `defer` attributes as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GOM Encoder versions 1.0.0.11 and earlier **Description** The issue is related to a heap-based buffer overflow in the Preview/Set Segment function, allowing remote attackers to cause a denial of service or execute arbitrary code via a long text field in a subtitle (.srt) file. **Recommendations** For versions 1.0.0.11 and earlier, update to a version that contains a fix for this issue, as using a long text field in a subtitle file can lead to memory corruption and application crash or execution of arbitrary code. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NetArtMedia Jobs Portal version 1.3 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via two parameters: the `job` parameter to "index.php" in the search module or the `news id` parameter to "index.php". **Recommendations** For NetArtMedia Jobs Portal version 1.3, consider restricting access to the search module and limiting input to the `job` and `news id` parameters until a patch is available. As a temporary workaround, avoid using the `job` and `news id` parameters in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** NetArtMedia Real Estate Portal version 2.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `ad` parameter in the `/index.php` API endpoint. The vulnerability is related to SQL injection in the `re search` module. **Recommendations** For NetArtMedia Real Estate Portal version 2.0, consider restricting access to the `re search` module to minimize the risk of exploitation. Avoid using the `ad` parameter in the `/index.php` API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BreakPoint Software Hex Workshop version 5.1.4 **Description** A buffer overflow issue exists, allowing user-assisted attackers to potentially cause a denial of service and possibly execute arbitrary code. This is achieved via a long mapping reference in a Color Mapping (.cmap) file. **Recommendations** For BreakPoint Software Hex Workshop version 5.1.4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CoolPlayer versions 2.17 through 2.19 **Description** The issue is a stack-based buffer overflow in the skin.c file, which allows remote attackers to execute arbitrary code. This is achieved by providing a large PlaylistSkin value in a skin file. **Recommendations** For CoolPlayer versions 2.17 through 2.19, update to a version that contains a fix for this issue to prevent remote code execution.

**Name of the Vulnerable Software and Affected Versions** SAWStudio version 3.9i **Description** The issue is related to a buffer overflow that can be triggered by a long SAWSTUDIO PREFERENCES STRUCT value in a .prf (preferences) file, potentially allowing user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code. **Recommendations** For SAWStudio version 3.9i, consider avoiding the use of long SAWSTUDIO PREFERENCES STRUCT values in .prf files until a patch is available. As a temporary workaround, restrict the handling of .prf files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** phpLinkat version 0.1 **Description** The issue allows remote attackers to bypass authentication and access unspecified pages under the admin/ section by sending a specific cookie, namely `login=right`. **Recommendations** For phpLinkat version 0.1, consider restricting access to the admin/ section until a patch is available. As a temporary workaround, avoid using the `login` cookie or restrict its usage to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** phpLinkat version 0.1 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `catid` parameter in the showcat.php file. **Recommendations** For phpLinkat version 0.1, consider restricting access to the showcat.php file until a patch is available. As a temporary workaround, avoid using the `catid` parameter in the affected API endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: ITechBids version 7.0 Gold Description: A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `productid` parameter in the "forward to friend.php" file. Recommendations: For ITechBids version 7.0 Gold, consider restricting access to the vulnerable "forward to friend.php" file until a patch is available, and avoid using the `productid` parameter in this context to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: ITechBids version 7.0 Gold Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved through SQL injection vulnerabilities in three locations: - the `seller id` parameter in "sellers othersitem.php" - the `productid` parameter in "classifieds.php" - the `id` parameter in "shop.php". Recommendations: For ITechBids version 7.0 Gold, consider restricting access to the `sellers othersitem.php`, `classifieds.php`, and `shop.php` files until a patch is available. As a temporary workaround, avoid using the `seller id`, `productid`, and `id` parameters in the affected files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.