Giulio

**Name of the Vulnerable Software and Affected Versions** Photos and Files Contest Gallery WordPress plugin versions prior to 21.3.1 **Description** The issue concerns a lack of sanitization and escaping of certain parameters, potentially allowing Cross-Site Scripting attacks by users with a role as low as author. **Recommendations** For versions prior to 21.3.1, update to version 21.3.1 or later to resolve the issue. As a temporary workaround, consider restricting the role of users to prevent potential exploitation until the update is applied. Avoid using vulnerable parameters in the plugin until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Pulse Secure Pulse Connect Secure (PCS) versions prior to 2020-04-06 **Description** An issue was discovered where the applet in tncc.jar accepts an arbitrary SSL certificate when a Host Checker policy is enforced on macOS, Linux, and Solaris clients. **Recommendations** For Pulse Secure Pulse Connect Secure (PCS) versions prior to 2020-04-06, consider disabling the Host Checker policy as a temporary workaround until a patch is available. Restrict access to the tncc.jar applet to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Pulse Secure Pulse Connect Secure (PCS) versions prior to 2020-04-06 **Description** The issue allows a man-in-the-middle attacker to perform OS command injection attacks against a client via shell metacharacters to the `doCustomRemediateInstructions` method. This is because `Runtime.getRuntime().exec()` is used. The applet in tncc.jar, executed on macOS, Linux, and Solaris clients when a Host Checker policy is enforced, is vulnerable to this attack. **Recommendations** For Pulse Secure Pulse Connect Secure (PCS) versions prior to 2020-04-06, as a temporary workaround, consider disabling the `doCustomRemediateInstructions` method until a patch is available. Restrict access to the tncc.jar applet to minimize the risk of exploitation. Avoid using shell metacharacters in the affected method to prevent OS command injection attacks.

**Name of the Vulnerable Software and Affected Versions** Pulse Secure Pulse Connect Secure (PCS) versions prior to 2020-04-06 **Description** An issue was discovered in Pulse Secure Pulse Connect Secure. The applet in tncc.jar launches a TCP server that accepts local connections on a random port when a Host Checker policy is enforced on macOS, Linux, and Solaris clients. This server can be reached by local HTTP clients due to the ignoring of up to 25 invalid lines and the possibility of DNS rebinding. **Recommendations** For Pulse Secure Pulse Connect Secure (PCS) versions prior to 2020-04-06, at the moment, there is no information about a newer version that contains a fix for this vulnerability.