Rmx

**Name of the Vulnerable Software and Affected Versions** Yuhhu Superstar 2008 version (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting a SQL injection vulnerability in the view.topics.php file via the `board` parameter in the API endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** EfesTECH Video version 5.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `catID` parameter in the default.asp file. **Recommendations** For EfesTECH Video version 5.0, avoid using the `catID` parameter in the default.asp file until the issue is resolved. Consider restricting access to the default.asp file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** TualBLOG version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands due to multiple SQL injection vulnerabilities in the icerik.asp file. This is demonstrated by the `icerikno` parameter. **Recommendations** For TualBLOG version 1.0, avoid using the `icerikno` parameter in the icerik.asp file until a fix is available. Consider restricting access to the icerik.asp file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.