Gatsby

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.114 **Description** A problematic vulnerability has been found in DedeCMS, affecting the file /sys verifies.php?action=view. The manipulation of the `filename` argument with the input ../../../../../etc/passwd leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For DedeCMS version 5.7.114, patch immediately to prevent potential file disclosure and monitor for exploit attempts. As a temporary workaround, consider restricting access to the `/sys verifies.php?action=view` endpoint until a patch is available. Avoid using the `filename` argument in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** SEMCMS versions up to 4.8 **Description** A critical issue has been found, affecting the `locate` function of the `function.php` file, leading to sql injection. The attack can be launched remotely. **Recommendations** For SEMCMS versions up to 4.8: Patch to the latest version, thoroughly review code for similar vulnerabilities, and monitor for signs of exploit attempts. As a temporary workaround, consider disabling the `locate` function of the `function.php` file until a patch is available.

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.112 **Description** A critical issue has been found in the processing of the file dede/makehtml archives action.php, leading to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond. **Recommendations** For DedeCMS version 5.7.112, as a temporary workaround, consider restricting access to the dede/makehtml archives action.php file until a patch is available. Avoid using this file in production environments to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** AMTT HiBOS version 1.0 **Description** A critical issue has been found in the software, affecting some unknown functionality. The manipulation of the `Type` argument leads to SQL injection. The attack can be launched remotely. The exploit has been disclosed to the public. The vendor was contacted about this issue but did not respond. **Recommendations** For AMTT HiBOS version 1.0, as a temporary workaround, consider restricting access to the functionality that allows manipulation of the `Type` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Xiamen Four-Faith Video Surveillance Management System versions 2016 through 2017 **Description** A critical issue has been found in the Apache Struts component of the system, allowing for unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Xiamen Four-Faith Video Surveillance Management System versions 2016 through 2017, consider restricting access to the Apache Struts component to minimize the risk of exploitation. As a temporary workaround, avoid using any functionality that may be related to file uploads until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Shenzhen Youkate Industrial Facial Love Cloud Payment System versions up to 1.0.55.0.0.1 **Description** A critical vulnerability has been found in the Shenzhen Youkate Industrial Facial Love Cloud Payment System. This issue affects an unknown part of the file /SystemMng.ashx of the component Account Handler. The manipulation of the `operatorRole` argument with the input 00 leads to improper privilege management. It is possible to initiate the attack remotely. **Recommendations** For Shenzhen Youkate Industrial Facial Love Cloud Payment System versions up to 1.0.55.0.0.1, as a temporary workaround, consider restricting access to the /SystemMng.ashx file until a patch is available. Additionally, avoid using the `operatorRole` argument with the input 00 in the affected component Account Handler to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CVS management/tracker versions 4.7.x-1.0 through 4.7.x-2.0 CVS management/tracker version 4.7.0 **Description** The issue allows remote attackers to inject arbitrary web script or HTML via the `motivation` field in the CVS application page. This occurs because the field is not passed through `check markup` on display, enabling cross-site scripting (XSS). **Recommendations** For versions 4.7.x-1.0 through 4.7.x-2.0, update to a version that includes the 20060807 contribution release system. For version 4.7.0, update to a version that includes the 20060807 contribution release system. As a temporary workaround, consider restricting access to the CVS application page to minimize the risk of exploitation.