Farisv

**Name of the Vulnerable Software and Affected Versions** react-draft-wysiwyg versions prior to 1.14.6 **Description** The issue allows a `javascript:` URI in a Link Target of the link decorator in `decorators/Link/index.js` when a draft is shared across users, leading to XSS. **Recommendations** For versions prior to 1.14.6, update to version 1.14.6 or later to resolve the issue. As a temporary workaround, consider restricting the use of the link decorator in `decorators/Link/index.js` to minimize the risk of exploitation. Avoid using the `javascript:` URI in the Link Target until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: tecrail Responsive FileManager version 9.13.4 Description: The issue arises from the mishandling of the media preview action, allowing for a cross-site scripting (XSS) attack when a media file is uploaded with an XSS payload in its name. Recommendations: For version 9.13.4, update to a newer version that addresses this issue, as the current version allows for XSS attacks via media file uploads with malicious payloads in the file names.

Name of the Vulnerable Software and Affected Versions: tecrail Responsive FileManager version 9.13.4 Description: The issue allows remote attackers to write to an arbitrary file due to a paths[0] path traversal mitigation bypass. This can be achieved through the `create file` action in the "execute.php" endpoint. Recommendations: For version 9.13.4, consider restricting access to the `execute.php` endpoint until a patch is available. As a temporary workaround, avoid using the `create file` action in `execute.php` to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: tecrail Responsive FileManager version 9.13.4 Description: The issue allows remote attackers to write to an arbitrary image file, such as jpg, jpeg, or png, via path traversal using the `path` parameter through the `save img` action in `ajax calls.php`. Recommendations: For version 9.13.4, consider restricting access to the `ajax calls.php` file or disabling the `save img` action to minimize the risk of exploitation. Avoid using the `path` parameter in the affected API endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: tecrail Responsive FileManager version 9.13.4 Description: The issue allows remote attackers to read arbitrary files via path traversal using the `path` parameter, through the `copy cut` action in "ajax calls.php" and the `paste clipboard` action in "execute.php". Recommendations: For version 9.13.4, consider restricting access to the `ajax calls.php` and `execute.php` files to minimize the risk of exploitation, and avoid using the `path` parameter in these actions until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: tecrail Responsive FileManager version 9.13.4 Description: The issue allows remote attackers to delete an arbitrary directory due to a paths[0] path traversal mitigation bypass through the "delete folder" action in the "execute.php" endpoint. Recommendations: For version 9.13.4, consider restricting access to the "execute.php" endpoint or disabling the "delete folder" action until a patch is available.

Name of the Vulnerable Software and Affected Versions: tecrail Responsive FileManager version 9.13.4 Description: The issue allows remote attackers to delete an arbitrary file due to a paths[0] path traversal mitigation bypass through the "delete file" action in the "execute.php" endpoint. Recommendations: For version 9.13.4, consider restricting access to the "execute.php" endpoint or disabling the "delete file" action until a patch is available.

Name of the Vulnerable Software and Affected Versions: tecrail Responsive FileManager version 9.13.4 Description: The issue allows remote attackers to read arbitrary files via path traversal using the `path` parameter through the "get file" action in "ajax calls.php". Recommendations: For version 9.13.4, consider restricting access to the "ajax calls.php" file or disabling the "get file" action until a patch is available. Avoid using the `path` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** PEAR Archive Tar versions 1.4.3 and earlier **Description** The issue is related to the Archive Tar class, where several file operations use the `$v header['filename']` parameter. This can be exploited by crafting a tar file with a malicious path, potentially leading to object injection and arbitrary file deletion. In some cases, it may also be possible to achieve remote code execution, resulting in file modification or deletion. The vulnerability is related to the restoration of untrusted data in memory. **Recommendations** For PEAR Archive Tar versions 1.4.3 and earlier, update to version 1.4.4 to resolve the issue. As a temporary workaround, consider restricting the use of the Archive Tar class until a patch is available. Avoid using the `$v header['filename']` parameter in file operations to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions 1.6.x through 1.6.1.22 PrestaShop versions 1.7.x through 1.7.4.3 **Description** The issue allows remote attackers to delete an image directory. **Recommendations** For PrestaShop versions 1.6.x through 1.6.1.22, update to version 1.6.1.23 or later. For PrestaShop versions 1.7.x through 1.7.4.3, update to version 1.7.4.4 or later.

**Name of the Vulnerable Software and Affected Versions** PrestaShop versions 1.6.x through 1.6.1.22 PrestaShop versions 1.7.x through 1.7.4.3 **Description** The issue allows remote attackers to execute arbitrary code via a file upload. **Recommendations** For PrestaShop versions 1.6.x through 1.6.1.22, update to version 1.6.1.23 or later. For PrestaShop versions 1.7.x through 1.7.4.3, update to version 1.7.4.4 or later.