Luckyt0Mat0

**Name of the Vulnerable Software and Affected Versions** sra-admin version 1.1.1 **Description** sra-admin is a background rights management system that separates the front and back end. It has a storage cross-site scripting (XSS) vulnerability. After logging into the sra-admin background, an attacker can upload an html page containing xss attack code in "Personal Center" - "Profile Picture Upload" allowing theft of the user's personal information. **Recommendations** For sra-admin version 1.1.1, update to version 1.1.2 to resolve the issue. As a temporary workaround, consider restricting access to the "Profile Picture Upload" feature in the "Personal Center" to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Ballcat Codegen versions prior to 1.0.0.beta.2 **Description** Ballcat Codegen provides the function of online editing code to generate templates. In versions prior to 1.0.0.beta.2, attackers can implement remote code execution through malicious code injection of the template engine. This happens because Velocity and freemarker templates are introduced but input verification is not done. **Recommendations** For versions prior to 1.0.0.beta.2, upgrade to version 1.0.0.beta.2 or later to rectify the fault. As a temporary workaround, consider disabling the template engine or restricting the use of Velocity and freemarker templates until a patch is applied. Avoid using the template engine for online editing code to generate templates until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Databasir version 1.01 **Description** Databasir is a team-oriented relational database model document management platform. It has a remote code execution issue due to the lack of validation of JDBC drivers prior to use, which may be provided by system users. This can lead to code execution by any basic user with system access. **Recommendations** For Databasir version 1.01, users are advised to upgrade as there are no known workarounds to this issue.

**Name of the Vulnerable Software and Affected Versions** Databasir version 1.01 **Description** Databasir is a team-oriented relational database model document management platform. It has a Server-Side Request Forgery issue. During the download verification process of a JDBC driver, the corresponding JDBC driver download address will be downloaded first, but this address will return a response page with complete error information when accessing a non-existent URL. Attackers can take advantage of this feature for SSRF. **Recommendations** For Databasir version 1.01, as a temporary workaround, consider restricting the download verification process of JDBC drivers to minimize the risk of exploitation. Avoid using the feature that downloads the JDBC driver download address until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Databasir version 1.01 **Description** Databasir is a team-oriented relational database model document management platform. It has a Use of Hard-coded Cryptographic Key issue. An attacker can use hard coding to generate login credentials of any user and log in to the service background located at different IP addresses. **Recommendations** For Databasir version 1.01, as a temporary workaround, consider restricting access to the service background to minimize the risk of exploitation. Avoid using hard-coded cryptographic keys in the login process until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.