The Master

**Name of the Vulnerable Software and Affected Versions** PhpNews version 1.0 **Description** The issue allows remote attackers to execute arbitrary PHP code. This is achieved via the `Include` parameter to specific PHP files, such as "Include/lib.inc.php3" and "Include/variables.php3". **Recommendations** For PhpNews version 1.0, consider restricting access to the `Include` parameter in the affected PHP files until a patch is available. As a temporary workaround, disable the inclusion of remote files via the `Include` parameter to prevent the execution of arbitrary PHP code.

Name of the Vulnerable Software and Affected Versions: phpBB2 Plus Acronym Mod version 0.9.5 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in the admin/admin acronyms.php file. Recommendations: For version 0.9.5, avoid using the `id` parameter in the admin/admin acronyms.php file until a patch is available. As a temporary workaround, consider restricting access to the admin/admin acronyms.php file to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Eric GUILLAUME uploader&downloader version 3 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id user` parameter in the administration/administre2.php file. Recommendations: For Eric GUILLAUME uploader&downloader version 3, avoid using the `id user` parameter in the administration/administre2.php file until the issue is resolved. Consider restricting access to the administration/administre2.php file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Nivisec Hacks List versions 1.21 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `hack id` parameter in the admin hacks list.php file of the phpBB module. **Recommendations** For versions 1.21 and earlier, consider restricting access to the admin hacks list.php file until a fix is available. As a temporary workaround, avoid using the `hack id` parameter in the affected module to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** EZ-Ticket version 0.0.1 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `ezt root path` parameter in the common.php file. **Recommendations** For EZ-Ticket version 0.0.1, consider restricting access to the `common.php` file or validating and sanitizing the `ezt root path` parameter to prevent remote file inclusion attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** WiClear version 0.10 **Description** The issue allows remote attackers to execute arbitrary PHP code via the `path` parameter in several files, including (1) `inc/prepend.inc.php`, (2) `inc/lib/boxes.lib.php`, (3) `inc/lib/tools.lib.php`, (4) `tools/trackback/index.php`, and (5) `tools/utf8conversion/index.php` in the `admin/` directory; and (6) `prepend.inc.php`, (7) `lib/boxes.lib.php`, and (8) `lib/history.lib.php` in the `inc/` directory. **Recommendations** For WiClear version 0.10, consider restricting access to the vulnerable files until a patch is available. As a temporary workaround, avoid using the `path` parameter in the affected files. Restrict access to the `admin/` and `inc/` directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** MiniBill version 1.2.2 **Description** The issue allows remote attackers to execute arbitrary PHP code. This can be achieved via a URL in the `config[include dir]` parameter in the "actions/ipn.php" endpoint or an FTP path in the `config[plugin dir]` parameter in "include/initPlugins.php". **Recommendations** For MiniBill version 1.2.2, consider disabling the `actions/ipn.php` and `include/initPlugins.php` scripts until a patch is available to prevent remote file inclusion. Restrict access to the `config[include dir]` and `config[plugin dir]` parameters to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ProjectButler version 0.8.4 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `rootdir` parameter to various scripts, including "/classes/" scripts such as (1) `Cache.class.php`, (2) `Customer.class.php`, (3) `Performance.class.php`, (4) `Project.class.php`, (5) `Representative.class.php`, (6) `User.class.php`, or (7) `common.php`. **Recommendations** For ProjectButler version 0.8.4, consider restricting access to the `/classes/` directory and its scripts to minimize the risk of exploitation. As a temporary workaround, avoid using the `rootdir` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Boite de News version 4.0.1 **Description** The issue allows remote attackers to execute arbitrary PHP code via a URL in the `url index` parameter in the `boitenews4/index.php` file. **Recommendations** For Boite de News version 4.0.1, avoid using the `url index` parameter in the affected API endpoint until the issue is resolved. Restrict access to the `boitenews4/index.php` file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.