Mohamed A. Baset

**Name of the Vulnerable Software and Affected Versions** APfell version 1.4 **Description** The issue allows for authenticated reflected cross-site scripting (XSS) through the `payloadtypes callback` function in the "/apiui/command " API endpoint. This enables an attacker to steal remote admin or user sessions and potentially add new users to the administration panel. **Recommendations** For APfell version 1.4, consider disabling the `payloadtypes callback` function as a temporary workaround until a patch is available. Restrict access to the "/apiui/command " API endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** JN-Jones MyBB-2FA plugin through 2014-11-05 for MyBB **Description** A CSRF issue allows an attacker to forge a request to control the state of the mybb2fa plugin via "usercp.php?action=mybb2fa&do=deactivate" or "usercp.php?action=mybb2fa&do=activate" API endpoints, specifically by manipulating the `do` parameter. This can lower the security of the targeted account by disabling two-factor authentication. **Recommendations** For JN-Jones MyBB-2FA plugin through 2014-11-05, consider disabling the mybb2fa plugin until a patch is available to prevent exploitation. Restrict access to the "usercp.php?action=mybb2fa&do=deactivate" and "usercp.php?action=mybb2fa&do=activate" API endpoints to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Crea8social version 2018.2 **Description** The issue is related to Stored Cross-Site Scripting, which occurs when a user can post a comment. **Recommendations** For Crea8social version 2018.2, update to a version that includes a fix for this issue, as no specific mitigation measures are provided.

**Name of the Vulnerable Software and Affected Versions** Crea8social version 2018.2 **Description** The issue is related to Stored Cross-Site Scripting that can be triggered via a User Profile. **Recommendations** For Crea8social version 2018.2, update to a version that includes a fix for this issue, as no specific workaround is provided for this version.

**Name of the Vulnerable Software and Affected Versions** Crea8social version 2018.2 **Description** The issue concerns Reflected Cross-Site Scripting. It can be exploited via the `term` parameter to the "/search" URI. **Recommendations** For Crea8social version 2018.2, consider restricting access to the `/search` URI or sanitizing the `term` parameter to prevent Reflected Cross-Site Scripting attacks.

**Name of the Vulnerable Software and Affected Versions** Crea8social version 2018.2 **Description** The issue concerns Stored Cross-Site Scripting, which occurs when a post is made. **Recommendations** For version 2018.2, update to a version that includes a fix for this issue, as no specific mitigation measures are provided for this version.

**Name of the Vulnerable Software and Affected Versions** phpSocial (formerly phpDolphin) versions prior to 3.0.1 **Description** The issue concerns an XSS in the PATH INFO to the 'search/tag/' URI. **Recommendations** For versions prior to 3.0.1, update to version 3.0.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Metasploit versions prior to 4.14.0 (Update 2017061301) **Description** A security issue allowed GET requests to stop running tasks, which should only be allowed via POST requests, as these actions change the service state. This could have enabled an attacker to stop running tasks by tricking an authenticated user into executing JavaScript. **Recommendations** For versions prior to 4.14.0 (Update 2017061301), update to Metasploit 4.14.0 (Update 2017061301) to ensure that only POST requests, which include a secret token to prevent CSRF attacks, are allowed to stop tasks.