Sylvain Thual

**Name of the Vulnerable Software and Affected Versions** RSS-aggregator version 1.0 **Description** The issue allows remote attackers to access admin functions without requiring administrative authentication for the admin/fonctions/ directory. This can be exploited through specific requests, such as (1) an IdFlux request to "supprimer flux.php" and (2) a TpsRafraich request to "modifier tps rafraich.php", potentially leading to unspecified other impact. **Recommendations** For RSS-aggregator version 1.0, consider implementing proper authentication mechanisms for the admin/fonctions/ directory to restrict unauthorized access. As a temporary workaround, restrict access to the "supprimer flux.php" and "modifier tps rafraich.php" files until a proper fix is applied.

**Name of the Vulnerable Software and Affected Versions** RSS-aggregator version 1.0 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `IdFlux` parameter to "admin/fonctions/supprimer flux.php" and the `IdTag` parameter to "admin/fonctions/supprimer tag.php". **Recommendations** For RSS-aggregator version 1.0, consider disabling access to the "admin/fonctions/supprimer flux.php" and "admin/fonctions/supprimer tag.php" endpoints until a patch is available. Restrict the use of the `IdFlux` and `IdTag` parameters in these endpoints to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** PHPEasyData version 1.5.4 **Description** The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting (XSS) attacks. This can be achieved via the `annuaire` parameter to "last records.php" and "annuaire.php", as well as the `by` and `cat id` parameters to "annuaire.php". **Recommendations** For PHPEasyData version 1.5.4, consider validating and sanitizing user input for the `annuaire`, `by`, and `cat id` parameters in the affected scripts to prevent arbitrary script or HTML injection. As a temporary workaround, restrict access to the "last records.php" and "annuaire.php" scripts until a proper fix is applied.

**Name of the Vulnerable Software and Affected Versions** PHPEasyData version 1.5.4 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `annuaire` parameter to "annuaire.php" or the `username` field in "admin/login.php". **Recommendations** For PHPEasyData version 1.5.4, consider restricting access to the "annuaire.php" and "admin/login.php" scripts until a patch is available. As a temporary workaround, avoid using the `annuaire` parameter and the `username` field in the affected scripts to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** XnView version 1.92.1 **Description** A buffer overflow issue exists, potentially allowing user-assisted remote attackers to execute arbitrary code. This can occur when a long filename argument is provided on the command line. However, it is unclear whether common handler configurations exist where this argument could be controlled by an attacker. **Recommendations** For XnView version 1.92.1, consider avoiding the use of long filename arguments on the command line until a fix is available. As a temporary workaround, restrict command line input to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.