Hyperkopite

**Name of the Vulnerable Software and Affected Versions** PublicCMS version 5.202506.b **Description** PublicCMS version 5.202506.b has a Cross Site Scripting (XSS) issue in the Content Search module. The issue allows for the injection of malicious scripts through the Content Search functionality. The vulnerable component is the Content Search module. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Roothub version 2.6.0 **Description** The issue allows unauthorized attackers to execute arbitrary SQL commands via the `s` parameter in the Topics Searching feature. This enables remote exploitation. **Recommendations** For Roothub version 2.6.0, consider restricting access to the Topics Searching feature until a patch is available. As a temporary workaround, avoid using the `s` parameter in the affected feature to minimize the risk of exploitation.