Jeffrey Medsger

Name of the Vulnerable Software and Affected Versions: mcholste Enterprise Log Search and Archive (ELSA) version revision 1205, commit 2cc17f1 and earlier Description: The issue is related to a Cross Site Scripting (XSS) vulnerability in the index view (/) that can be exploited via payload delivered through specific parameters. The vulnerable parameters include `type`, `name`, and `value` in the "/Query/set preference" endpoint, and `name` and `value` in the "/Query/preference" endpoint. The payload is executed when a user visits the index view (/). Recommendations: For mcholste Enterprise Log Search and Archive (ELSA) version revision 1205, commit 2cc17f1 and earlier, consider restricting access to the "/Query/set preference" and "/Query/preference" endpoints to minimize the risk of exploitation. As a temporary workaround, avoid using the `type`, `name`, and `value` parameters in the "/Query/set preference" endpoint and the `name` and `value` parameters in the "/Query/preference" endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Security Onion Solutions Squert versions 1.3.0 through 1.6.7 Description: The issue is related to an OS Command Injection vulnerability in the .inc/callback.php file. This can result in the execution of OS commands. The attack is exploitable via a web request to .inc/callback.php with a payload in the `data` or `obj` parameters, used in the `autocat()` function. Recommendations: For versions 1.3.0 through 1.6.7, update to version 1.7.0 to resolve the issue. As a temporary workaround, consider restricting access to the .inc/callback.php file and avoiding the use of the `data` and `obj` parameters in the `autocat()` function until the update is applied.

Name of the Vulnerable Software and Affected Versions: Security Onion Solutions Squert versions 1.0.1 through 1.6.7 Description: The issue is related to an OS Command Injection vulnerability. It can be exploited via a web request to the "/inc/callback.php" endpoint with a payload in the `txdata` parameter, used in `tx()` or `transcript()`, or the `catdata` parameter, used in `cat()`. This can result in the execution of OS commands. Recommendations: For versions 1.0.1 through 1.6.7, update to version 1.7.0 to resolve the issue. As a temporary workaround, consider restricting access to the "/inc/callback.php" endpoint and avoiding the use of the `txdata` and `catdata` parameters until the update is applied.

Name of the Vulnerable Software and Affected Versions: Security Onion Solutions Squert versions 1.1.1 through 1.6.7 Description: The issue is related to a SQL Injection vulnerability in the .inc/callback.php file. This vulnerability can be exploited via a web request to the .inc/callback.php endpoint with a malicious payload in the `sensors` parameter, which is used in the `ec()` function. This allows for the execution of SQL commands. Recommendations: For versions 1.1.1 through 1.6.7, update to version 1.7.0 to resolve the issue.