Sageee

**Name of the Vulnerable Software and Affected Versions** CoCoTeaNet CyreneAdmin versions up to 1.3.0 **Description** A path traversal issue exists in the Image Handler component of CoCoTeaNet CyreneAdmin. The issue is located in the `/api/system/user/getAvatar` file, where manipulation of the `Avatar` argument can lead to a path traversal. This can be initiated remotely. The exploit has been made public. **Recommendations** Update to a version beyond 1.3.0.

**Name of the Vulnerable Software and Affected Versions** CoCoTeaNet CyreneAdmin versions up to 1.3.0 **Description** A flaw exists in CoCoTeaNet CyreneAdmin that could lead to improper authorization. This issue affects the System Info Endpoint, specifically within the file `/api/system/dashboard/getCount`. The vulnerability is due to a manipulation that can be triggered remotely. The exploit for this issue has been publicly disclosed. **Recommendations** Update CoCoTeaNet CyreneAdmin to a version later than 1.3.0.

**Name of the Vulnerable Software and Affected Versions** Alixhan xh-admin-backend versions up to 1.7.0 **Description** A security issue exists in Alixhan xh-admin-backend. The problem relates to improper handling of input within the Database Query Handler component, specifically when processing the file `/frontend-api/system-service/api/system/role/query`. Manipulation of the `prop` argument can lead to SQL injection. This allows for remote exploitation. The details of the exploit have been publicly disclosed. The vendor was notified but did not respond. **Recommendations** Versions prior to 1.7.0 should be used.

Name of the Vulnerable Software and Affected Versions: DayCloud StudentManage version 1.0 Description: A critical vulnerability was found in DayCloud StudentManage, affecting the /admin/adminScoreUrl file of the Login Endpoint component. The manipulation of the `query` argument leads to SQL injection. This issue can be exploited remotely. The vendor was contacted about this disclosure but did not respond. Recommendations: For DayCloud StudentManage version 1.0, as a temporary workaround, consider restricting access to the `/admin/adminScoreUrl` endpoint until a fix is available. Avoid using the `query` argument in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.