Ignacio Aldarabi

**Name of the Vulnerable Software and Affected Versions** Sergestec Exito version 8.0 **Description** A SQL injection issue exists in Sergestec Exito version 8.0. This allows an attacker to retrieve, create, update, and delete databases. The vulnerability is present in the 'cat' parameter of the '/public.php' API endpoint. The `cat` parameter is susceptible to manipulation, potentially granting unauthorized database access. **Recommendations** Apply a fix for Sergestec Exito version 8.0 to address the SQL injection issue in the '/public.php' endpoint.

**Name of the Vulnerable Software and Affected Versions** Sergestec SISTICK version 7.2 **Description** A SQL injection issue exists in Sergestec's SISTICK version 7.2. This allows an attacker to retrieve, create, update, and delete databases. The issue is located in the 'id' parameter within the '/index.php?view=ticket detail' API endpoint. The `id` parameter is vulnerable to manipulation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sergestec Exito version 8.0 **Description** An insecure direct object reference (IDOR) issue exists in Sergestec Exito version 8.0. This allows an attacker to access data belonging to other customers. The issue is present in the `/admin/ticket a4.php` endpoint, specifically through manipulation of the `id` parameter. **Recommendations** Restrict access to the `/admin/ticket a4.php` endpoint. Sanitize or validate the `id` parameter to ensure it corresponds to the authorized data.

**Name of the Vulnerable Software and Affected Versions** Sergestec Exito version 8.0 **Description** A stored Cross-Site Scripting (XSS) issue exists in Sergestec Exito version 8.0. The issue is due to insufficient validation of user-supplied data. A malicious user can exploit this by sending a POST request with a crafted payload through the `obs` parameter in the '/admin/index.php?action=product update' API endpoint. Successful exploitation could allow an attacker to steal cookie session details from authenticated users. **Recommendations** Apply input validation and sanitization to the `obs` parameter in the '/admin/index.php?action=product update' API endpoint.