Raz0R

Name of the Vulnerable Software and Affected Versions: Simple Machines Forum versions 1.0.x through 1.0.13 Simple Machines Forum versions 1.1.x through 1.1.5 Simple Machines Forum versions 2.0 before beta 4 Description: The password reset functionality in Simple Machines Forum includes clues about the random number generator state within a hidden form field and generates predictable validation codes. This allows remote attackers to modify passwords of other users and gain privileges. Recommendations: For Simple Machines Forum versions 1.0.x through 1.0.13, update to version 1.0.14 or later. For Simple Machines Forum versions 1.1.x through 1.1.5, update to version 1.1.6 or later. For Simple Machines Forum versions 2.0 before beta 4, update to beta 4 or later.

**Name of the Vulnerable Software and Affected Versions** Twentyone Degrees Symphony versions 1.7.01 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `sym auth` cookie in a "/publish/filemanager/" request to "index.php". **Recommendations** For versions 1.7.01 and earlier, update to a version later than 1.7.01 to resolve the issue. As a temporary workaround, consider restricting access to the "/publish/filemanager/" endpoint until a patch is available. Avoid using the `sym auth` cookie in requests to "index.php" until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Twentyone Degrees Symphony versions 1.7.01 and earlier **Description** The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to a specified directory, then accessing the uploaded file via a direct request. This can be achieved by exploiting the unrestricted file upload vulnerability in the File Manager in the admin panel. **Recommendations** For versions 1.7.01 and earlier, restrict access to the File Manager in the admin panel to prevent unauthorized file uploads. As a temporary workaround, consider disabling the file upload functionality until a fix is available. Avoid using the `destination` parameter in the affected API endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: Wajox Software microSSys CMS versions 1.5 and earlier Description: The issue allows remote attackers to execute arbitrary PHP code via a URL in an arbitrary element of the `PAGES` array parameter in `index.php`, when `register globals` is enabled. Recommendations: For Wajox Software microSSys CMS versions 1.5 and earlier, consider disabling the `register globals` setting to prevent exploitation. Additionally, restrict access to the `index.php` file and avoid using the `PAGES` array parameter until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.