R00Tse7En

**Name of the Vulnerable Software and Affected Versions** HongCMS version 3.0.0 **Description** The issue allows for arbitrary file read and write operations. This is achieved by utilizing a ../ in the `filename` parameter to the "admin/index.php/language/edit" API endpoint. **Recommendations** For HongCMS version 3.0.0, as a temporary workaround, consider restricting access to the "admin/index.php/language/edit" API endpoint until a patch is available. Avoid using the `filename` parameter with ../ in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** OneFileCMS version 3.6.13 **Description** The issue allows remote attackers to modify onefilecms.php by clicking the Copy button twice. **Recommendations** For OneFileCMS version 3.6.13, consider disabling the Copy button functionality in onefilecms.php until a patch is available to prevent modification by remote attackers.

**Name of the Vulnerable Software and Affected Versions** BEESCMS version 4.0 **Description** The issue allows for the addition of arbitrary VIP accounts due to a CSRF vulnerability. This can be exploited via the "admin/admin member.php?action=add&nav=add web user&admin p nav=user" URI, which is an API endpoint. The `action`, `nav`, and `admin p nav` variables are involved in this process. **Recommendations** For BEESCMS version 4.0, as a temporary workaround, consider restricting access to the "admin/admin member.php" endpoint to minimize the risk of exploitation. Avoid using the `action`, `nav`, and `admin p nav` variables in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.