Mandreko

Name of the Vulnerable Software and Affected Versions OPNsense versions prior to 26.1.6 Description OPNsense's LDAP authentication connector does not properly sanitize user-supplied input when constructing LDAP search filters. Specifically, the `username` provided during WebGUI login is directly incorporated into the LDAP filter without escaping special characters. This allows an unauthenticated attacker to inject LDAP filter metacharacters into the `username` field, potentially enabling them to enumerate valid LDAP usernames within the configured directory. If the LDAP server configuration includes an Extended Query to limit login access to members of a specific group, the same injection technique can be used to bypass this group membership restriction and authenticate as any LDAP user whose password is known, regardless of their group affiliation. Recommendations Upgrade to OPNsense version 26.1.6 or later.

**Name of the Vulnerable Software and Affected Versions** Tautulli versions 2.14.2 through 2.16.9 Tautulli versions 2.1.0-beta through 2.16.9 **Description** Tautulli is a Python-based monitoring and tracking tool for Plex Media Server. The `/api/v2?cmd=get home stats` API endpoint directly passes the `section id`, `user id`, `before`, and `after` query parameters into SQL using Python %-string formatting without parameterization. An attacker with the Tautulli administrator API key can inject arbitrary SQL and extract any data from the Tautulli SQLite database using boolean-blind inference. The vulnerable parameters are `section id`, `user id`, `before`, and `after`. **Recommendations** Tautulli versions 2.14.2 through 2.16.9: Upgrade to version 2.17.0 or later. Tautulli versions 2.1.0-beta through 2.16.9: Upgrade to version 2.17.0 or later.

**Name of the Vulnerable Software and Affected Versions** Tautulli versions prior to 2.17.0 **Description** Tautulli is a Python-based monitoring and tracking tool for Plex Media Server. The `/pms image proxy` API endpoint accepts a user-supplied `img` parameter and forwards it to Plex Media Server’s `/photo/:/transcode` transcoder without authentication or scheme/host restriction. This endpoint is intentionally excluded from authentication checks. Any value of `img` starting with http is passed directly to Plex, causing the Plex Media Server process to make an outbound HTTP request to a URL specified by an attacker. The `img` parameter is vulnerable. **Recommendations** Update Tautulli to version 2.17.0 or later.

**Name of the Vulnerable Software and Affected Versions** Tautulli versions 1.3.10 through 2.16.9 **Description** Tautulli, a Python-based monitoring tool for Plex Media Server, contains a flaw due to an unsanitized JSONP callback parameter. This allows for cross-origin script injection and potential theft of API keys. The vulnerable parameter is a JSONP callback. Exploitation of this issue could lead to unauthorized access and control of the Plex Media Server through the compromised API key. **Recommendations** Update to version 2.17.0 or later.

**AdGuard Home and Affected Versions** AdGuard Home versions prior to 0.107.73 **Description** AdGuard Home is a network-wide software for blocking ads and tracking. A critical issue exists where an unauthenticated remote attacker can bypass all authentication mechanisms. This is achieved by sending an HTTP/1.1 request that requests an upgrade to HTTP/2 cleartext (h2c). Once the upgrade is accepted, the resulting HTTP/2 connection is handled by an internal multiplexer that lacks authentication middleware. Consequently, all subsequent HTTP/2 requests on that connection are processed as if they are fully authenticated, regardless of whether any credentials were provided. The root cause lies in the improper placement of the authentication middleware within the HTTP server configuration. Specifically, the authentication middleware is applied at the outer layer but bypassed when the h2c upgrade occurs, as the inner multiplexer does not enforce authentication. An attacker can exploit this to gain full administrative API access, including the ability to read and modify DNS configuration, add malicious filter lists, disable protection, change the admin password, and hijack DNS resolution for all clients on the network. A proof-of-concept (PoC) script demonstrates the bypass using a raw TCP connection with HTTP/2 framing, allowing an attacker to extract DNS query history and device inventory information. The vulnerability is exploitable without any credentials. **Recommendations** Update to version 0.107.73 or later.

**Name of the Vulnerable Software and Affected Versions** Seerr versions prior to 3.1.0 **Description** Seerr is a media request and discovery manager for Jellyfin, Plex, and Emby. The `GET /api/v1/user/:id` API endpoint improperly discloses the full settings object for any user, including credentials for Pushover, Pushbullet, and Telegram, to any authenticated requester, irrespective of their privilege level. This issue can be exploited independently or in conjunction with an unauthenticated account creation issue. Exploiting both issues creates a zero-prior-access chain that leaks third-party API credentials for all users, including administrators. The variable `id` in the API endpoint is vulnerable. **Recommendations** Update to version 3.1.0 or later.

**Name of the Vulnerable Software and Affected Versions** Seerr versions 2.0.0 through 3.0.9 **Description** Seerr is a media request and discovery manager for Jellyfin, Plex, and Emby. A flaw in the authentication guard logic within the `/api/v1/auth/jellyfin` API endpoint allows an unauthenticated attacker to create a new Seerr account on any Plex-configured instance. This is achieved by authenticating with an attacker-controlled Jellyfin server, granting the attacker an authenticated session with default permissions, including the ability to submit media requests to Radarr/Sonarr. Deployments where `settings.main.mediaServerType` is set to `PLEX`, `settings.jellyfin.ip` is set to `""`, and `settings.main.newPlexLogin` is set to `true` are potentially vulnerable. **Recommendations** Update to Seerr version 3.1.0 or later.