Gary Tan

**Name of the Vulnerable Software and Affected Versions** U-Office (affected versions not specified) **Description** The U-Office Force login function has an issue that allows an unauthenticated remote attacker to redirect users to an arbitrary website. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** U-Office (affected versions not specified) **Description** The U-Office Force Download function contains a path traversal issue. This allows a remote attacker with general user privileges to exploit the issue and download arbitrary system files. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** U-Office (affected versions not specified) **Description** The U-Office Force Download function contains a path traversal issue. This allows a remote attacker with general user privileges to exploit the issue and download arbitrary system files. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** U-Office (affected versions not specified) **Description** The issue is related to insufficient filtering for special characters in the Force Bulletin function, allowing an unauthenticated remote attacker to inject JavaScript and perform a Reflected Cross-Site Scripting attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** U-Office (affected versions not specified) **Description** The issue is related to insufficient filtering for special characters in the Force PrintMessage function. This allows an unauthenticated remote attacker to inject JavaScript, potentially leading to a Reflected Cross-Site Scripting (XSS) attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** U-Office (affected versions not specified) **Description** The issue is related to insufficient filtering for special characters in the HTTP header fields of the UserDefault page. This allows a remote attacker with general user privilege to inject JavaScript and perform a Stored Cross-Site Scripting attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** U-Office (affected versions not specified) **Description** The issue concerns insufficient filtering for special characters in the Force Forum function, allowing a remote attacker with general user privileges to inject JavaScript. This enables the attacker to perform a Stored Cross-Site Scripting (XSS) attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Smart eVision (affected versions not specified) **Description** The issue concerns inadequate authorization for the database query function. A remote attacker with general user privilege, who is not explicitly authorized to access the information, can access sensitive information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** smart eVision (affected versions not specified) **Description** The issue is related to inadequate authorization for the system information query function. An unauthenticated remote attacker can access sensitive information without being explicitly authorized to do so. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Smart eVision (affected versions not specified) **Description** The issue is related to insufficient authorization for the task acquisition function. An unauthorized remote attacker can exploit this to acquire the Session IDs of other general users. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Smart eVision (affected versions not specified) **Description** The issue is related to improper privilege management. A remote attacker with general user privilege can exploit this to escalate to administrator privilege, allowing them to perform arbitrary system commands or disrupt the service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Smart eVision (affected versions not specified) **Description** The issue is related to a path traversal vulnerability in the Report API function. This vulnerability is caused by insufficient filtering for special characters in URLs, allowing a remote attacker with general user privilege to bypass authentication and access restricted paths. The attacker can also download system files. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Smart eVision (affected versions not specified) **Description** The issue is related to insufficient filtering for special characters in the `POST Data` parameter in a specific function, allowing an unauthenticated remote attacker to inject JavaScript and perform a Stored Cross-Site Scripting (XSS) attack. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Smart eVision (affected versions not specified) **Description** The issue is related to a path traversal vulnerability in Smart eVision's file acquisition function. This vulnerability is caused by insufficient filtering for special characters in the URL parameter. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and access restricted paths, allowing them to download and delete arbitrary system files, which can disrupt service. The vulnerability can also be exploited to read, modify, or delete data. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.