Rorochan

**Name of the Vulnerable Software and Affected Versions** 201206030 Novel version 3.5.0 **Description** A critical issue affects the function `updateBookChapter` of the file `src/main/java/io/github/xxyopen/novel/controller/author/AuthorController.java` of the component Chapter Handler, leading to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond. **Recommendations** As a temporary workaround, consider disabling the `updateBookChapter` function until a patch is available. Restrict access to the Chapter Handler component to minimize the risk of exploitation. Avoid using the `updateBookChapter` function in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZZCMS version 2025 **Description** A problematic issue has been found in the URL Handler component, specifically affecting the /3/ucenter api/code/register nodb.php file. The manipulation of the `$ SERVER['PHP SELF']` argument leads to cross-site scripting. This issue can be exploited remotely. **Recommendations** For ZZCMS version 2025, consider restricting access to the vulnerable URL Handler component, specifically the /3/ucenter api/code/register nodb.php file, to minimize the risk of exploitation. As a temporary workaround, avoid using the `$ SERVER['PHP SELF']` argument in sensitive operations until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CmsEasy version 7.7.7.9 Description: A vulnerability was found in the function `deleteimg action` in the library `lib/admin/file admin.php`. The manipulation of the argument `imgname` leads to path traversal. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For CmsEasy version 7.7.7.9, as a temporary workaround, consider disabling the `deleteimg action` function until a patch is available. Restrict access to the `lib/admin/file admin.php` library to minimize the risk of exploitation. Avoid using the argument `imgname` in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CmsEasy version 7.7.7.9 Description: A vulnerability has been found in the function `deleteimg action` in the library `lib/admin/image admin.php`. The manipulation of the argument `imgname` leads to path traversal. The attack can be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For CmsEasy version 7.7.7.9, as a temporary workaround, consider disabling the `deleteimg action` function until a patch is available. Restrict access to the `lib/admin/image admin.php` library to minimize the risk of exploitation. Avoid using the argument `imgname` in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CmsEasy version 7.7.7.9 **Description** A critical issue has been discovered, affecting the `deletedir action/restore action` function in the `lib/admin/database admin.php` library. This leads to path traversal and can be initiated remotely. The issue has been publicly disclosed. **Recommendations** For CmsEasy version 7.7.7.9, consider disabling the `deletedir action/restore action` function in the `lib/admin/database admin.php` library as a temporary workaround until a patch is available. Restrict access to the `lib/admin/database admin.php` library to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** CmsEasy version 7.7.7.9 **Description** A critical vulnerability was found in CmsEasy, affecting the function `backAll action` in the library `lib/admin/database admin.php` of the file "/index.php?case=database&act=backAll&admin dir=admin&site=default". The manipulation of the argument `select[]` leads to path traversal. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** For CmsEasy version 7.7.7.9, as a temporary workaround, consider disabling the `backAll action` function until a patch is available. Restrict access to the vulnerable library `lib/admin/database admin.php` to minimize the risk of exploitation. Avoid using the argument `select[]` in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Chat System version 1.0 **Description** A critical issue has been found in the code-projects Chat System, affecting an unknown functionality of the file /admin/deleteroom.php. The manipulation of the `id` argument leads to SQL injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the `/admin/deleteroom.php` file until a patch is available. Restrict access to the `id` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Chat System version 1.0 **Description** A critical issue has been found in the code-projects Chat System. It affects an unknown function of the file /admin/deleteuser.php. The manipulation of the `id` argument leads to SQL injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For code-projects Chat System version 1.0, consider disabling the unknown function in the /admin/deleteuser.php file until a patch is available. Restrict access to the /admin/deleteuser.php file to minimize the risk of exploitation. Avoid using the `id` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.