Stolichnayer

**Name of the Vulnerable Software and Affected Versions** Frappe versions prior to 14.99.14 Frappe versions prior to 15.94.0 **Description** A crafted malicious signup URL for a Frappe site could lead to an open redirect or reflected cross-site scripting (XSS), depending on the crafted payload, when a user signs up. The issue occurs when a user accesses a specially designed URL. **Recommendations** Update to Frappe version 14.99.14 or later. Update to Frappe version 15.94.0 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A broken access control issue allows authenticated students to add content to existing course units, despite this action being restricted to users with higher privileges. The issue affects versions prior to 4.2. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A Stored Cross-Site Scripting (XSS) issue exists in versions before 4.2, allowing authenticated high-privileged users, such as teachers or administrators, to inject malicious JavaScript into user-controllable input fields. This injected script is then executed when other users access the affected pages. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, a course management system, contains a Stored Cross-Site Scripting (XSS) issue. Authenticated students can inject malicious JavaScript into user profile fields. This JavaScript is executed when users with viewing privileges access the affected application pages. Stored Cross-Site Scripting (XSS) occurs when malicious scripts are persistently stored on the target servers, such as in databases, message forums, visitor logs, or comment fields. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A file upload validation bypass allows attackers to upload files with restricted extensions by including them within ZIP archives. The application then extracts these archives using its built-in decompression feature, circumventing the intended file type restrictions. The vulnerable functionality resides in the application’s file upload process and decompression functionality. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A Reflected Cross-Site Scripting (XSS) issue exists in versions prior to 4.2, potentially allowing remote attackers to execute arbitrary JavaScript within the security context of authenticated users. This is achieved by creating malicious URLs and deceiving users into accessing them. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A security issue exists where an unauthenticated remote attacker can access personal files belonging to other users. This is possible by directly requesting predictable user identifiers, exploiting an Insecure Direct Object Reference (IDOR). An IDOR occurs when an application uses user-supplied input to directly access objects based on that input. In this case, the application fails to properly validate the user's authorization before granting access to files. The `user identifiers` are predictable, allowing attackers to enumerate and access files they should not have permission to view. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A flaw in the system’s logic allows authenticated students to incorrectly record their attendance in activities, even those that have ended, by using a specially created URL. This affects all versions before 4.2. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system susceptible to a username enumeration issue. An unauthenticated attacker can determine valid user accounts by observing variations in the login response. The `/login` endpoint is affected, allowing attackers to test different usernames (`username`) and analyze the system's response to identify active accounts. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A stored Cross-Site Scripting (XSS) issue exists in versions before 4.2, enabling authenticated students to inject malicious JavaScript into assignment files. When instructors view these submissions, the injected script is executed. The vulnerability involves the upload of assignment files where a student can insert malicious code. This code is then executed when an instructor views the submitted assignment. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A Cross-Site Request Forgery (CSRF) issue exists in teacher-restricted endpoints prior to version 4.2. This allows attackers to trick authenticated teachers into performing unwanted actions, such as altering assignment grades, through specially designed requests. The affected endpoints allow unauthorized actions. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A flaw exists where active user sessions are not invalidated after a password change. This allows existing session tokens to remain valid, potentially granting unauthorized continued access to user accounts. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A flaw in the password reset process in versions prior to 4.2 allows a local attacker to reuse a valid password reset token after it has been used. This can lead to unauthorized password changes and potential account takeover. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Open eClass versions prior to 4.2 **Description** The Open eClass platform, previously known as GUnet eClass, is a course management system. A broken access control issue permits authenticated students to create new course units, a function typically reserved for users with greater privileges. The issue allows unauthorized creation of course units. **Recommendations** Update to version 4.2 or later.

**Name of the Vulnerable Software and Affected Versions** Frappe CRM versions prior to 1.56.2 **Description** Authenticated users can set crafted URLs in a website field that are not sanitized, leading to cross-site scripting (XSS), a condition where malicious scripts are injected into trusted websites. **Recommendations** Update to version 1.56.2.

**Name of the Vulnerable Software and Affected Versions** OpenNebula Community Edition (CE) versions prior to 7.0.0 OpenNebula Enterprise Edition (EE) versions prior to 6.10.3 **Description** A critical race condition exists in FireEdge that can lead to full account takeover. An unauthenticated attacker can obtain a valid JSON Web Token (JWT) belonging to a legitimate user without knowing their credentials. A JWT is a compact, URL-safe means of representing claims to be transferred between two parties. **Recommendations** Update OpenNebula Community Edition (CE) to version 7.0.0 or later. Update OpenNebula Enterprise Edition (EE) to version 6.10.3 or later.

**Name of the Vulnerable Software and Affected Versions** Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1 **Description** A vulnerability was found in the HTTP Response Header Handler component of the Summer Pearl Group Vacation Rental Management Platform, leading to information disclosure. The manipulation can be launched remotely. **Recommendations** For Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1, upgrade to version 1.0.2 to address this issue.

**Name of the Vulnerable Software and Affected Versions** Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1 **Description** A vulnerability was found in the Summer Pearl Group Vacation Rental Management Platform, affecting an unknown functionality and leading to cross-site request forgery. The attack can be launched remotely. **Recommendations** For Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1, upgrade to version 1.0.2 to address this issue.

**Name of the Vulnerable Software and Affected Versions** Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1 **Description** A critical vulnerability has been found in the Listing Handler component of the Summer Pearl Group Vacation Rental Management Platform, affecting unknown code and leading to authorization bypass. The attack can be initiated remotely. **Recommendations** For Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1, upgrade to version 1.0.2 to address this issue. It is recommended to upgrade the affected Listing Handler component.

**Name of the Vulnerable Software and Affected Versions** Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1 **Description** A vulnerability was found in the Summer Pearl Group Vacation Rental Management Platform, affecting some unknown processing of the component Header Handler. The manipulation of the argument `Host` leads to open redirect. The attack may be initiated remotely. **Recommendations** For Summer Pearl Group Vacation Rental Management Platform versions up to 1.0.1, upgrade to version 1.0.2 to address this issue. As a temporary workaround, consider restricting the manipulation of the `Host` argument in the Header Handler component until the upgrade is applied.