Lvzc

**Name of the Vulnerable Software and Affected Versions** wuzhicms version 4.1.0 **Description** A problematic issue has been found in the function test of the file coreframe/app/search/admin/config.php. The manipulation of the `sphinxhost`/`sphinxport` argument leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For wuzhicms version 4.1.0, as a temporary workaround, consider restricting access to the `config.php` file in the `coreframe/app/search/admin` directory until a patch is available. Avoid using the `sphinxhost` and `sphinxport` arguments in the affected function test to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical issue has been found in the software, affecting some unknown functionality of the file /fladmin/cat edit.php. The manipulation of the `id` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For Fanli2012 native-php-cms version 1.0, as a temporary workaround, consider restricting access to the /fladmin/cat edit.php file until a patch is available. Avoid using the `id` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical issue has been found in the software, affecting an unknown functionality of the file /fladmin/login.php. The manipulation of the `username` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For Fanli2012 native-php-cms version 1.0, as a temporary workaround, consider restricting access to the /fladmin/login.php file until a patch is available. Avoid using the `username` argument in the affected login functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A problem has been found in the software. It affects an unknown function of the file /fladmin/sysconfig doedit.php. The issue arises from the manipulation of the `info` argument, leading to cross-site scripting attacks. These attacks can be launched remotely. **Recommendations** For Fanli2012 native-php-cms version 1.0, as a temporary workaround, consider restricting access to the /fladmin/sysconfig doedit.php file until a patch is available. Avoid manipulating the `info` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical issue affects the processing of the file /fladmin/sysconfig doedit.php in the Backend component, leading to improper authorization. The attack can be initiated remotely. **Recommendations** For Fanli2012 native-php-cms version 1.0, as a temporary workaround, consider restricting access to the /fladmin/sysconfig doedit.php file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A vulnerability has been found in the file /fladmin/jump.php, affecting unknown code. The manipulation of the `message/error` argument leads to cross-site scripting. The attack can be initiated remotely. **Recommendations** For Fanli2012 native-php-cms version 1.0, consider disabling access to the /fladmin/jump.php file until a patch is available. As a temporary workaround, avoid using the `message/error` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fanli2012 native-php-cms version 1.0 **Description** A critical vulnerability was found in the software, affecting an unknown part of the file /fladmin/user recoverpwd.php. The manipulation leads to the use of default credentials. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Fanli2012 native-php-cms version 1.0, consider disabling access to the /fladmin/user recoverpwd.php file until a patch is available. Restrict the use of default credentials to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** reckcn SPPanAdmin version 1.0 **Description** A cross-site scripting issue was found in the software, allowing for remote exploitation. The manipulation of the `name` argument in the "/;/admin/role/edit" file leads to this issue. Other parameters might also be affected. The exploit has been publicly disclosed, and the vendor was notified but did not respond. **Recommendations** As a temporary workaround, consider disabling access to the "/;/admin/role/edit" file until a patch is available. Restrict the manipulation of the `name` argument in the affected file to minimize the risk of exploitation. Avoid using the `name` argument in the "/;/admin/role/edit" file until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** wangl1989 mysiteforme version 1.0 **Description** A problem was found in the function `RestResponse` of the file `src/main/java/com/mysiteforme/admin/controller/system/SiteController`. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For version 1.0, as a temporary workaround, consider disabling the `RestResponse` function until a patch is available. Restrict access to the `SiteController` to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZeroWdd studentmanager version 1.0 **Description** A critical vulnerability was found in ZeroWdd studentmanager, affecting the `addTeacher/editTeacher` function of the file `src/main/Java/com/wdd/studentmanager/controller/TeacherController.java`. The manipulation of the `file` argument leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `addTeacher/editTeacher` function until a patch is available. Restrict access to the `TeacherController` to minimize the risk of exploitation. Avoid using the `file` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** wangl1989 mysiteforme version 1.0 **Description** A critical issue affects the `rememberMeManager` function in the file `src/main/java/com/mysiteforme/admin/config/ShiroConfig.java`. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For version 1.0, as a temporary workaround, consider disabling the `rememberMeManager` function until a patch is available. Restrict access to the `ShiroConfig.java` file to minimize the risk of exploitation. Avoid using the deserialization functionality in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** wangl1989 mysiteforme version 1.0 **Description** A critical issue has been found in the file upload function of the `LocalUploadServiceImpl` class, located at `src/main/java/com/mysiteform/admin/service/ipl/`. The manipulation of the `test` argument leads to unrestricted file upload. This issue can be exploited remotely. The exploit has been made public. **Recommendations** For version 1.0, as a temporary workaround, consider disabling the file upload function in `LocalUploadServiceImpl` until a patch is available. Restrict access to the `test` argument to minimize the risk of exploitation. Avoid using the `test` argument in the affected file upload functionality until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** wangl1989 mysiteforme version 1.0 **Description** A critical issue affects the `doContent` function of the file `src/main/java/com/mysiteform/admin/controller/system/FileController`. The manipulation of the `content` argument leads to server-side request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For version 1.0, as a temporary workaround, consider disabling the `doContent` function until a patch is available. Restrict access to the `FileController` to minimize the risk of exploitation. Avoid using the `content` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZeroWdd studentmanager version 1.0 **Description** A vulnerability was found in ZeroWdd studentmanager, affecting the `submitAddRole` function of the file `src/main/java/com/zero/system/controller/RoleController.java`. The manipulation of the `name` argument leads to cross-site scripting. The attack can be initiated remotely. **Recommendations** For ZeroWdd studentmanager version 1.0, as a temporary workaround, consider disabling the `submitAddRole` function until a patch is available. Restrict access to the `RoleController` module to minimize the risk of exploitation. Avoid using the `name` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Beijing Yunfan Internet Technology Yunfan Learning Examination System version 1.9.2 **Description** A critical vulnerability was found in the Beijing Yunfan Internet Technology Yunfan Learning Examination System. The issue affects an unknown functionality of the file `src/main/java/com/yf/exam/modules/sys/user/controller/SysUserControl` of the JWT Token Handler component, leading to improper authentication. The attack can be launched remotely, with a rather high complexity, making exploitation difficult. The exploit has been disclosed to the public and may be used. **Recommendations** For version 1.9.2, consider temporarily disabling the JWT Token Handler component until a patch is available. Restrict access to the `src/main/java/com/yf/exam/modules/sys/user/controller/SysUserControl` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Beijing Yunfan Internet Technology Yunfan Learning Examination System version 1.9.2 **Description** A problematic issue has been found in the Beijing Yunfan Internet Technology Yunfan Learning Examination System. It affects an unknown function of the file src/main/java/com/yf/exam/modules/paper/controller/PaperController.java, which is part of the Exam Answer Handler component. This issue leads to information disclosure and can be exploited remotely. The exploit has been made public. **Recommendations** For version 1.9.2, consider restricting access to the Exam Answer Handler component until a patch is available. As a temporary workaround, avoid using the affected function in the PaperController.java file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Beijing Yunfan Internet Technology Yunfan Learning Examination System version 1.9.2 **Description** A critical issue has been found in the system, affecting some unknown processing of the file `/doc.html`. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For version 1.9.2, consider restricting access to the `/doc.html` file until a patch is available. As a temporary workaround, review and limit the authorization processes to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tongda OA versions 11.2 through 11.6 **Description** A critical vulnerability was found in Tongda OA, affecting unknown code of the file general/hr/setting/attendance/leave/data.php of the component Annual Leave Handler. The manipulation leads to improper authorization, allowing remote attacks. The exploit has been disclosed to the public and may be used. **Recommendations** For Tongda OA versions 11.2 through 11.6, update to the latest patched version immediately to mitigate risks. As a temporary workaround, consider restricting access to the Annual Leave Handler component until a patch is available. Additionally, audit logs for signs of exploit.

**Name of the Vulnerable Software and Affected Versions** wuzhicms version 4.1.0 **Description** A critical issue has been found, affecting the `add/edit` function of the file `www/coreframe/app/content/admin/block.php`. This leads to code injection and can be exploited remotely. The issue has been publicly disclosed, and the vendor was contacted but did not respond. **Recommendations** For wuzhicms version 4.1.0, consider disabling the `add/edit` function in the `www/coreframe/app/content/admin/block.php` file as a temporary workaround until a patch is available. Restrict access to this function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ZZCMS version 2023 **Description** A critical issue affects the processing of the file 3/Ebak5.1/upload/ChangeTable.php, where the manipulation of the `savefilename` argument leads to unrestricted upload. The attack can be initiated remotely. **Recommendations** For ZZCMS version 2023, consider restricting access to the ChangeTable.php file to minimize the risk of exploitation. As a temporary workaround, avoid using the `savefilename` argument in the affected file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.