Jiashenghe

**Name of the Vulnerable Software and Affected Versions** SeaCMS version 13.3.20250820 **Description** A security issue exists in SeaCMS 13.3.20250820 related to the Cron Task Management Module. The issue involves SQL injection triggered by manipulating the `collectID` argument within the `/admin cron.php` file. This can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tencent WeKnora version 0.1.0 **Description** A security flaw exists in Tencent WeKnora version 0.1.0. The `testEmbeddingModel` function within the `/api/v1/initialization/embedding/test` file is susceptible to server-side request forgery. Manipulation of the `baseUrl` argument can trigger this issue, allowing for remote exploitation. The exploit has been publicly released. **Recommendations** Upgrade the affected component.

**Name of the Vulnerable Software and Affected Versions:** ShopXO versions up to 6.5.0 **Description:** A cross-site scripting issue exists due to the manipulation of the `lang/system type` parameter in the processing of the `header.html` file. The attack can be initiated remotely. The exploit has been publicly disclosed. **Recommendations:** Versions prior to 6.5.1 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions:** Bigotry OneBase versions through 1.3.6 **Description:** A flaw exists in Bigotry OneBase that allows for cross site scripting. The issue is located in the `parse args` function within the `/tpl/think exception.tpl` file. Manipulation of the `args` argument can trigger the flaw. The attack can be initiated remotely. The details of the exploit have been publicly disclosed. **Recommendations:** Versions prior to 1.3.6 are affected. As a temporary workaround, consider restricting access to the `/tpl/think exception.tpl` file until a patch is available. Avoid using the `args` argument in the `parse args` function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions:** saltbo zpan versions up to 1.6.5 saltbo zpan version 1.7.0-beta2 **Description:** A vulnerability exists in saltbo zpan related to the JSON Web Token Handler component. The issue affects the `NewToken` function within the `zpan/internal/app/service/token.go` file. Manipulation of the input `123` results in the use of a hard-coded password. The attack can be initiated remotely, but exploitation is considered difficult. The exploit has been publicly disclosed. **Recommendations:** Versions up to 1.6.5: At the moment, there is no information about a newer version that contains a fix for this vulnerability. saltbo zpan version 1.7.0-beta2: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Yonyou UFIDA ERP-NC version 5.0 **Description** A problematic issue has been identified, affecting the /login.jsp file. The manipulation of the `key/redirect` argument leads to cross-site scripting. This issue can be initiated remotely. **Recommendations** For Yonyou UFIDA ERP-NC version 5.0, as a temporary workaround, consider restricting access to the `/login.jsp` file until a patch is available. Avoid using the `key/redirect` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Yonyou UFIDA ERP-NC version 5.0 **Description** A problematic issue was found in the software, affecting an unknown function of the file /help/systop.jsp. The manipulation of the `langcode` argument leads to cross-site scripting. It is possible to launch the attack remotely. The issue has been disclosed publicly. **Recommendations** For Yonyou UFIDA ERP-NC version 5.0, consider restricting access to the /help/systop.jsp file until a patch is available. As a temporary workaround, avoid using the `langcode` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Yonyou UFIDA ERP-NC version 5.0 **Description** A problem was found in the processing of the file /menu.jsp. The manipulation of the argument `flag` leads to cross-site scripting. The attack may be initiated remotely. **Recommendations** For Yonyou UFIDA ERP-NC version 5.0, as a temporary workaround, consider restricting access to the /menu.jsp file until a patch is available. Avoid using the `flag` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** GeSHi versions up to 1.0.9.1 **Description** A problematic issue has been found in GeSHi, affecting the `get var` function of the `/contrib/cssgen.php` file in the CSS Handler component. The manipulation of the `default-styles/keywords-1/keywords-2/keywords-3/keywords-4/comments` argument leads to cross-site scripting. This issue can be exploited remotely. **Recommendations** For GeSHi versions up to 1.0.9.1, consider disabling the `get var` function in the `/contrib/cssgen.php` file as a temporary workaround until a patch is available. Restrict access to the CSS Handler component to minimize the risk of exploitation. Avoid using the `default-styles/keywords-1/keywords-2/keywords-3/keywords-4/comments` argument in the affected function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** osuuu LightPicture versions 1.2.2 and earlier **Description** A problematic vulnerability was found in osuuu LightPicture, affecting unknown code of the file "/api/upload" of the component SVG File Upload Handler. The manipulation of the `argument file` leads to cross-site scripting attacks. These attacks can be initiated remotely. **Recommendations** For versions 1.2.2 and earlier, as a temporary workaround, consider disabling the "/api/upload" endpoint until a patch is available. Restrict access to the SVG File Upload Handler component to minimize the risk of exploitation. Avoid using the `argument file` in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Emlog Pro versions up to 2.4.3 **Description** A problematic issue has been found in the Cover Upload Handler component, affecting an unknown function of the file /admin/article.php?action=upload cover. The manipulation of the `image` argument leads to cross-site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Emlog Pro versions up to 2.4.3, consider disabling the `image` argument in the /admin/article.php?action=upload cover endpoint as a temporary workaround until a patch is available. Restrict access to the Cover Upload Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Beijing Longda Jushang Technology DBShop商城系统 version 3.3 Release 231225 **Description** A cross-site scripting issue affects the /home-order file, where manipulating the `orderStatus` argument with a specific input leads to cross-site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Beijing Longda Jushang Technology DBShop商城系统 version 3.3 Release 231225, consider implementing input validation for the `orderStatus` parameter in the /home-order file as a temporary workaround until a patch is available. Restrict access to the /home-order file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Emlog Pro versions up to 2.4.1 **Description** A problematic issue has been found in Emlog Pro, affecting some unknown functionality of the file /admin/link.php. The manipulation of the `siteurl/icon` argument leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Emlog Pro versions up to 2.4.1, as a temporary workaround, consider restricting access to the /admin/link.php file until a patch is available. Avoid using the `siteurl/icon` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Emlog Pro versions up to 2.4.1 **Description** A problematic vulnerability was found in Emlog Pro, affecting an unknown functionality in the library /include/lib/common.php. The manipulation of the `msg` argument leads to cross site scripting. The attack can be launched remotely. **Recommendations** For Emlog Pro versions up to 2.4.1, as a temporary workaround, consider restricting access to the library /include/lib/common.php to minimize the risk of exploitation. Avoid using the `msg` argument in affected functionalities until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Emlog Pro versions up to 2.4.1 **Description** A problematic vulnerability has been found in Emlog Pro, affecting an unknown function of the file /admin/store.php. The manipulation of the `argument tag` leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Emlog Pro versions up to 2.4.1, consider disabling access to the /admin/store.php file until a patch is available. As a temporary workaround, restrict the manipulation of the `argument tag` to minimize the risk of cross site scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.116 **Description** A vulnerability has been found in DedeCMS, affecting an unknown function of the file /member/article add.php. The manipulation of the `body` argument leads to cross-site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For DedeCMS version 5.7.116, as a temporary workaround, consider disabling the affected function in the /member/article add.php file until a patch is available. Restrict access to the /member/article add.php file to minimize the risk of exploitation. Avoid using the `body` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.116 **Description** A problematic vulnerability was found in DedeCMS, affecting an unknown functionality of the file /member/uploads add.php of the component SWF File Handler. The manipulation of the `mediatype` argument leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For DedeCMS version 5.7.116, as a temporary workaround, consider restricting access to the `/member/uploads add.php` file until a patch is available. Avoid using the `mediatype` argument in the affected component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.116 **Description** A problematic issue has been found in DedeCMS, affecting some unknown functionality of the file /member/soft add.php. The manipulation of the argument body leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For DedeCMS version 5.7.116, as a temporary workaround, consider disabling access to the /member/soft add.php file until a patch is available. Restrict the manipulation of the argument body to minimize the risk of cross site scripting attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.116 **Description** A problematic vulnerability was found in DedeCMS, affecting the `RemoveXSS` function of the file `/plus/carbuyaction.php` in the HTTP POST Request Handler component. This leads to cross-site scripting attacks, which can be initiated remotely. The exploit has been publicly disclosed. **Recommendations** For DedeCMS version 5.7.116, as a temporary workaround, consider disabling the `RemoveXSS` function until a patch is available. Restrict access to the `/plus/carbuyaction.php` file to minimize the risk of exploitation. Avoid using the HTTP POST Request Handler component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** idcCMS version 1.60 **Description** A problematic issue was found in idcCMS, affecting the `GetCityOptionJs` function of the file `/inc/classProvCity.php`. The manipulation of the `idName` argument leads to cross-site scripting. This issue can be initiated remotely. **Recommendations** For idcCMS version 1.60, as a temporary workaround, consider disabling the `GetCityOptionJs` function until a patch is available. Restrict access to the `/inc/classProvCity.php` file to minimize the risk of exploitation. Avoid using the `idName` argument in the affected function until the issue is resolved. Patch the software and validate inputs to mitigate the issue.