Nicolas Serra

**Name of the Vulnerable Software and Affected Versions** PhpCollab versions 2.5.1 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `project` or `id` parameters to "topics/deletetopics.php", the `id` parameter to "bookmarks/deletebookmarks.php", or the `id` parameter to "calendar/deletecalendar.php". **Recommendations** For PhpCollab versions 2.5.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** PhpCollab versions 2.5.1 and earlier **Description** The issue allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension to the clients/editclient.php script, and then accessing it via a direct request to the file in logos clients/. **Recommendations** For versions 2.5.1 and earlier, consider restricting access to the clients/editclient.php script until a fix is available, and avoid uploading files with executable extensions to prevent potential code execution.

**Name of the Vulnerable Software and Affected Versions** EyesOfNetwork versions 5.0 and earlier **Description** The issue allows remote authenticated users to execute arbitrary SQL commands. This can be achieved via several parameters to specific API endpoints, including `bp name`, `display`, `search`, or `equipment` to "module/monitoring ged/ged functions.php" or the `type` parameter to "monitoring ged/ajax.php". **Recommendations** For EyesOfNetwork versions 5.0 and earlier, update to a version later than 5.0 to resolve the issue. As a temporary workaround, consider restricting access to the "module/monitoring ged/ged functions.php" and "monitoring ged/ajax.php" endpoints until a patch is available. Avoid using the `bp name`, `display`, `search`, `equipment`, and `type` parameters in the affected API endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** EyesOfNetwork versions 5.0 and earlier **Description** The issue allows remote authenticated users to execute arbitrary code via shell metacharacters in the `selected events[]` parameter. This can occur in the `acknowledge`, `delete`, or `ownDisown` function in `module/monitoring ged/ged functions.php` or the `module` parameter to `module/index.php`. **Recommendations** For EyesOfNetwork versions 5.0 and earlier, consider restricting access to the `module/monitoring ged/ged functions.php` and `module/index.php` files until a patch is available. As a temporary workaround, avoid using the `selected events[]` parameter in the affected functions and API endpoints.