Segfaultmaster

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-628 **Description** An issue was discovered that allows an attacker to cause Denial of Service or possibly have other unspecified impact by sending a crafted file to certain binaries, such as mp42hls, which triggers an out of bounds write in the AP4 CttsTableEntry constructor located in Core/Ap4Array.h. **Recommendations** For Bento4 version 1.5.1-628, consider avoiding the use of the mp42hls binary with untrusted input until a fix is available. As a temporary workaround, restrict access to the vulnerable `AP4 CttsTableEntry` constructor to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-628 **Description** A heap-based buffer over-read issue exists in the `AP4 BitStream::ReadBytes()` function in `Codecs/Ap4BitStream.cpp`. This can be triggered by sending a crafted file to the `aac2mp4` binary, potentially allowing an attacker to cause a Denial of Service (Segmentation fault) or have other unspecified impacts. **Recommendations** For Bento4 version 1.5.1-628, as a temporary workaround, consider restricting the use of the `aac2mp4` binary until a patch is available. Additionally, avoid processing crafted files with the `aac2mp4` binary to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Bento4 version 1.5.1-628 **Description** A NULL pointer dereference issue occurs in the `AP4 Track::GetSampleIndexForTimeStampMs()` function, located in `Core/Ap4Track.cpp`, which can be triggered by sending a crafted file to the `mp4audioclip` binary. This allows an attacker to cause a Denial of Service, resulting in a Segmentation fault, or possibly have other unspecified impacts. **Recommendations** For Bento4 version 1.5.1-628, as a temporary workaround, consider restricting the use of the `mp4audioclip` binary until a patch is available. Avoid processing crafted files with the `mp4audioclip` binary to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Croogo versions prior to 3.0.6 **Description** A stored-self XSS issue exists, allowing an attacker to execute HTML or JavaScript code in a vulnerable `Title` field to "/admin/taxonomy/vocabularies". **Recommendations** For versions prior to 3.0.6, update to a version that contains a fix for this issue. As a temporary workaround, consider restricting access to the "/admin/taxonomy/vocabularies" endpoint until a patch is available. Avoid using the `Title` field in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Croogo versions through 3.0.5 **Description** A stored-self XSS issue exists, allowing an attacker to execute HTML or JavaScript code in a vulnerable Blog field to "/admin/nodes/nodes/add/blog". **Recommendations** For versions through 3.0.5, as a temporary workaround, consider restricting access to the "/admin/nodes/nodes/add/blog" endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Croogo versions through 3.0.5 **Description** A stored-self XSS issue allows an attacker to execute HTML or JavaScript code in a vulnerable `Title` field to the "/admin/menus/menus/edit/3" API endpoint. **Recommendations** For versions through 3.0.5, as a temporary workaround, consider restricting access to the `/admin/menus/menus/edit/3` API endpoint and the `Title` field until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Croogo versions prior to 3.0.6 **Description** A stored-self XSS issue allows an attacker to execute HTML or JavaScript code in a vulnerable Title field to the "/admin/blocks/blocks/edit/8" API endpoint. **Recommendations** For versions prior to 3.0.6, update to a version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** ATutor versions prior to 2.2.5 **Description** A stored-self XSS issue exists, allowing an attacker to execute HTML or JavaScript code in a vulnerable Real Name field to the "/mods/ core/users/admins/my edit.php" API endpoint. **Recommendations** For versions prior to 2.2.5, update to version 2.2.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Croogo versions prior to 3.0.7 **Description** A stored-self XSS issue allows an attacker to execute HTML or JavaScript code in a vulnerable Title field to the "/admin/file-manager/attachments/edit/4" API endpoint. This enables the attacker to inject malicious code, potentially leading to unauthorized actions or data exposure. **Recommendations** For Croogo versions prior to 3.0.7, update to version 3.0.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the "/admin/file-manager/attachments/edit/4" endpoint or sanitizing user input in the Title field to prevent code injection.

Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.0 Description: A cross-site scripting (XSS) issue exists due to the lack of escaping of unintended characters in the Website Hostname for Data Collectors. This occurs in the pollers.php file. Recommendations: For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.0 Description: A cross-site scripting (XSS) issue exists due to the lack of escaping of unintended characters in the Name field for a Color. This allows for potential injection of malicious scripts. Recommendations: For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.0 Description: A cross-site scripting (XSS) issue exists due to the lack of escaping of unintended characters in the Website Hostname field for Devices, which can be accessed via tree.php in host.php. Recommendations: For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.0 Description: A cross-site scripting (XSS) issue exists due to the lack of escaping of unintended characters in the Graph Vertical Label. Recommendations: For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue.