Joepie91

Name of the Vulnerable Software and Affected Versions: ZPanel versions prior to 10.1.0 Description: The issue allows for Remote Command Execution. Recommendations: For versions prior to 10.1.0, update to version 10.1.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Marcelo Costa FileServer component version 1.0 **Description** A directory traversal issue allows remote authenticated users to list arbitrary directories and read arbitrary files by using a .. (dot dot) in a pathname. This affects Microsoft Windows Live Messenger and Messenger Plus! Live (MPL). **Recommendations** For version 1.0 of the Marcelo Costa FileServer component, consider restricting access to sensitive directories and files as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.