P0Cas

**Name of the Vulnerable Software and Affected Versions** URI.js versions prior to 1.19.9 **Description** The issue arises from whitespace characters not being removed from the beginning of the protocol, resulting in improper URL parsing. This can cause protocol validation mechanisms to fail. The problem has been patched in version 1.19.9. As a workaround, removing leading whitespace from values before passing them to `URI.parse` can mitigate the issue. **Recommendations** For versions prior to 1.19.9, update to version 1.19.9 to resolve the issue. As a temporary workaround, consider removing leading whitespace from values before passing them to `URI.parse`, for example, by using a function to remove whitespace from the URL.

**Name of the Vulnerable Software and Affected Versions** MartDevelopers iResturant version 1.0 **Description** The issue arises from the lack of verification of the `view` parameter value when it is added to the SQL query during the viewing of reservations, leading to SQL Injection. **Recommendations** For MartDevelopers iResturant version 1.0, consider restricting access to the SQL query functionality related to viewing reservations until a proper fix is implemented to verify the `view` parameter value. As a temporary workaround, avoid using the `view` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** MartDevelopers iResturant version 1.0 **Description** The issue arises from the lack of verification of `email` and `phone` parameter values, which are directly added to the SQL query during membership registration, leading to SQL Injection. **Recommendations** For MartDevelopers iResturant version 1.0, ensure that the `email` and `phone` parameter values are properly verified and sanitized before adding them to the SQL query to prevent SQL Injection. As a temporary workaround, consider implementing input validation for the `email` and `phone` parameters to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Useful Simple Open-Source CMS (USOC) versions prior to Pb2.4Bfx3 **Description** The issue allows SQL injection in the `usersearch.php` file, but only for users with administrative privileges. This affects the content management system's security. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For versions prior to Pb2.4Bfx3, replace the file `admin/pages/useredit.php` with a newer version to resolve the issue. USOC version Pb2.4Bfx3 already contains a fixed version of `admin/pages/useredit.php`, so no action is required for this version.

**Name of the Vulnerable Software and Affected Versions** USOC (affected versions not specified) **Description** The issue is related to SQL injection via the usersearch.php file. Search terms provided by the user are not sanitized and are used directly to construct a SQL statement. Only site admins are permitted to search. There is no information about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. The `usersearch.php` file is the vulnerable endpoint, and the search terms provided by the user are the vulnerable parameters. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** USOC (affected versions not specified) **Description** The issue allows for SQL injection via the register.php file. Specifically, `usernames`, `email addresses`, and `passwords` provided by the user were not sanitized and were used directly to construct a SQL statement. Users are advised to upgrade as soon as possible. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Convos (affected versions not specified) **Description** The issue concerns a stored XSS vulnerability in Convos, an open-source multi-user chat application. It occurs because characters starting with "https://" in the chat window create an <a> tag, and there is a lack of escaping for double quotes, although escaping exists for "<" or ">". This allows an attacker to execute malicious scripts using onfocus and autofocus. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Convos (affected versions not specified) **Description** The issue concerns Convos, an open-source multi-user chat that runs in a web browser. It is possible to bypass the upload filter by uploading an SVG file with an .html extension, as the chat window does not allow the use of SVG extensions directly but permits .html extensions. This bypass leads to Stored XSS, allowing an attacker to execute malicious scripts when a user views the uploaded file. Users are advised to update as soon as possible to mitigate this risk. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Admidio versions prior to 4.0.12 Description: A cross-site scripting vulnerability is present in Admidio. The Reflected XSS vulnerability occurs because redirect.php does not properly validate the value of the `url` parameter. Through this vulnerability, an attacker is capable of executing malicious scripts. Recommendations: For versions prior to 4.0.12, update to version 4.0.12 to resolve the issue. As a temporary workaround, consider restricting access to the redirect.php file or validating the `url` parameter to minimize the risk of exploitation.