Michael Hess

**Name of the Vulnerable Software and Affected Versions** Drupal versions prior to 10.5.9 Drupal versions prior to 10.6.7 Drupal versions prior to 11.2.11 Drupal versions prior to 11.3.7 **Description** Drupal core's jQuery integration for AJAX modal dialog boxes does not sufficiently sanitize certain options, which can lead to cross-site scripting (XSS), a flaw where malicious scripts are injected into trusted websites. **Recommendations** Update to version 10.5.9 Update to version 10.6.7 Update to version 11.2.11 Update to version 11.3.7

**Name of the Vulnerable Software and Affected Versions** Drupal File (Field) Paths versions prior to 7.1.3 **Description** An information disclosure issue exists in the file URI processing of File (Field) Paths in Drupal. Authenticated users can potentially disclose other users’ private files through filename-collision uploads. This can occur when consumers of `hook node insert()`—such as email attachment modules—receive an incorrect file URI, bypassing normal access controls on private files. **Recommendations** Update Drupal File (Field) Paths to version 7.1.3 or later.

**Name of the Vulnerable Software and Affected Versions** Drupal CAPTCHA versions 0.0.0 through 1.16.9 Drupal CAPTCHA versions 2.0.0 through 2.0.9 **Description** A functionality bypass exists in Drupal CAPTCHA due to insufficient invalidation of security tokens. An attacker may bypass the CAPTCHA on subsequent submissions if they first successfully solve at least one CAPTCHA manually to obtain valid tokens. **Recommendations** Update Drupal CAPTCHA to version 1.17.0 or later. Update Drupal CAPTCHA to version 2.0.10 or later.

Name of the Vulnerable Software and Affected Versions: Drupal Simple XML sitemap versions 0.0.0 through 4.2.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows an attacker to perform Cross-Site Scripting attacks. Recommendations: For versions 0.0.0 through 4.2.1, update to version 4.2.2 or later to resolve the issue. As a temporary workaround, consider restricting user input to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Drupal Image Sizes versions 0.0.0 through 3.0.1 **Description** The issue is related to the insertion of sensitive information into sent data, which allows for forceful browsing. This can be exploited by a remote attacker to bypass security restrictions. **Recommendations** For versions 0.0.0 through 3.0.1, update to version 3.0.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Drupal REST & JSON API Authentication versions 0.0.0 through 2.0.12 **Description** The issue is related to an Incorrect Authorization vulnerability in Drupal REST & JSON API Authentication, allowing Forceful Browsing. This can enable a remote attacker to bypass existing security restrictions. **Recommendations** For versions 0.0.0 through 2.0.12, update to version 2.0.13 or later to resolve the issue. As a temporary workaround, consider restricting access to the REST & JSON API Authentication module until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Migrate queue importer versions 0.0.0 through 2.1.1 **Description** The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability in the Migrate queue importer module of the Drupal content management system. This vulnerability allows for Cross-Site Request Forgery attacks. **Recommendations** For versions 0.0.0 through 2.1.1, update to a version later than 2.1.1 to resolve the issue. As a temporary workaround, consider restricting access to the Migrate queue importer module until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Drupal Advanced PWA inc Push Notifications versions 0.0.0 through 1.5.0 **Description** The issue is related to an incorrect authorization vulnerability in the Drupal Advanced PWA inc Push Notifications module, which allows for forceful browsing. This means that an attacker can bypass security restrictions and perform unauthorized actions. The vulnerability can be exploited remotely. **Recommendations** For versions 0.0.0 through 1.5.0, update to version 1.5.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the module to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** IBM Cloud Pak for Data versions 4.5 through 4.6 **Description** The issue allows a privileged user to upload malicious files of dangerous types that can be automatically processed within the product's environment. **Recommendations** For versions 4.5 and 4.6, consider restricting file upload capabilities to prevent the processing of malicious files until a patch is available. As a temporary workaround, limit the privileges of users who can upload files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Cisco Web Security Appliance (WSA) versions (affected versions not specified) **Description** A vulnerability in the web-based management interface of Cisco AsyncOS for Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface of an affected device. This vulnerability is due to improper validation of user-supplied input in the web-based management interface. An attacker could exploit this vulnerability by persuading a user to retrieve a crafted file that contains malicious payload and upload it to the affected device. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moodle versions prior to 2.2.11 Moodle versions 2.3.x before 2.3.10 Moodle versions 2.4.x before 2.4.7 Moodle versions 2.5.x before 2.5.3 **Description** A cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script or HTML via an answer to a text-based quiz question. This occurs due to insufficient input validation in the quiz module. **Recommendations** For versions prior to 2.2.11, update to version 2.2.11 or later. For versions 2.3.x before 2.3.10, update to version 2.3.10 or later. For versions 2.4.x before 2.4.7, update to version 2.4.7 or later. For versions 2.5.x before 2.5.3, update to version 2.5.3 or later.