George Birbilis

**Name of the Vulnerable Software and Affected Versions** mojoPortal versions 2.3.4.3 through 2.3.5.1 **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML. This is achieved via the `User ID` parameter in the "ProfileView.aspx" page. **Recommendations** For versions 2.3.4.3 and 2.3.5.1, consider restricting access to the `ProfileView.aspx` page until a fix is available, and avoid using the `User ID` parameter in this page to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** mojoPortal versions 2.3.4.3 through 2.3.5.1 **Description** A cross-site request forgery (CSRF) issue exists in the file manager service, specifically in the Services/FileService.ashx endpoint. This allows remote attackers to hijack the authentication of administrators, enabling them to rename arbitrary files. For example, an attacker could cause the user.config file to be moved, resulting in a denial of service (service stop) and potentially exposing sensitive information. **Recommendations** For versions 2.3.4.3 and 2.3.5.1, consider disabling the Services/FileService.ashx endpoint until a patch is available to prevent exploitation of the CSRF vulnerability. Restrict access to the file manager service to minimize the risk of unauthorized file modifications.