Hai Dang Long

**Name of the Vulnerable Software and Affected Versions** Polaris FT Intellect Core Banking version 9.7.1 **Description** An issue in the Armor module allows SQL injection with an authenticated session. This occurs because input passed through the `code` parameter in certain pages, such as "collaterals/colexe3t.jsp", "/references/refsuppu.jsp", and "/references/refbranu.jsp", is mishandled before being used in SQL queries. **Recommendations** For Polaris FT Intellect Core Banking version 9.7.1, consider restricting access to the affected pages, specifically "collaterals/colexe3t.jsp", "/references/refsuppu.jsp", and "/references/refbranu.jsp", to minimize the risk of exploitation. Avoid using the `code` parameter in these pages until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Polaris FT Intellect Core Banking version 9.7.1 **Description** A reflected XSS issue exists in the Core and Portal modules, which can be exploited with an authenticated session. The issue is related to the `Customerid`, `formName`, `FrameId`, or `MODE` parameters. **Recommendations** For Polaris FT Intellect Core Banking version 9.7.1, consider restricting access to the affected parameters `Customerid`, `formName`, `FrameId`, and `MODE` to minimize the risk of exploitation until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Polaris FT Intellect Core Banking version 9.7.1 **Description** An issue was discovered in the Armor module, allowing CSRF to occur via the "/CollatWebApp/gcmsRefInsert?name=SUPP" URI. **Recommendations** For Polaris FT Intellect Core Banking version 9.7.1, consider implementing CSRF protection mechanisms to prevent exploitation. As a temporary workaround, restrict access to the "/CollatWebApp/gcmsRefInsert?name=SUPP" URI to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Polaris FT Intellect Core Banking version 9.7.1 **Description** An issue exists in the Core and Portal modules, where an open redirect is possible via the "/IntellectMain.jsp?IntellectSystem=" URI. **Recommendations** For Polaris FT Intellect Core Banking version 9.7.1, consider restricting access to the "/IntellectMain.jsp" endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BPC SmartVista version 2 **Description** The issue concerns a session fixation problem via the `JSESSIONID` parameter. **Recommendations** For version 2, consider restricting access to the `JSESSIONID` parameter to minimize the risk of exploitation.