Kkdt

**Name of the Vulnerable Software and Affected Versions** PbootCMS version 3.2.5 **Description** A vulnerability was found in the Image Handler component, which can lead to server-side request forgery. The manipulation can be launched remotely. **Recommendations** For PbootCMS version 3.2.5, consider restricting access to the Image Handler component until a patch is available. As a temporary workaround, avoid using the vulnerable function of the Image Handler component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** mirweiye Seven Bears Library CMS version 2023 **Description** A problematic issue was found in the Background Management Page component, leading to cross-site scripting. The manipulation can be initiated remotely. **Recommendations** For mirweiye Seven Bears Library CMS version 2023, consider restricting access to the Background Management Page until a fix is available. As a temporary workaround, avoid using the Background Management Page to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** mirweiye Seven Bears Library CMS version 2023 **Description** A vulnerability was found in the Add Link Handler component, which can lead to server-side request forgery. The manipulation can be launched remotely. **Recommendations** For mirweiye Seven Bears Library CMS version 2023, consider restricting access to the Add Link Handler component until a fix is available. As a temporary workaround, avoid using the unknown function of the Add Link Handler component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.