Thegreatone2176

**Name of the Vulnerable Software and Affected Versions** ChurchInfo (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands via various parameters to different PHP files. The vulnerable parameters include `PersonID` to files such as `PersonView.php`, `MemberRoleChange.php`, `PropertyAssign.php`, `WhyCameEditor.php`, `GroupPropsEditor.php`, `Reports/PDFLabel.php`, and `UserDelete.php`. Other vulnerable parameters are `DepositSlipID` to `DepositSlipEditor.php`, `QueryID` to `QueryView.php`, `GroupID` to `GroupView.php`, `GroupMemberList.php`, `MemberRoleChange.php`, `GroupDelete.php`, `/Reports/ClassAttendance.php`, and `/Reports/GroupReport.php`. Additionally, `PropertyID` to `PropertyEditor.php`, `FamilyID` to `Canvas05Editor.php`, `CanvasEditor.php`, and `FamilyView.php`, as well as `PledgeID` to `PledgeDetails.php` are also vulnerable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ChurchInfo (affected versions not specified) **Description** The issue allows remote attackers to obtain sensitive information via various parameters to different PHP files. This includes the `PersonID` parameter to files such as 'PersonView.php', 'MemberRoleChange.php', 'PropertyAssign.php', 'WhyCameEditor.php', 'GroupPropsEditor.php', 'Reports/PDFLabel.php', or 'UserDelete.php'. Additionally, an invalid `Number` parameter to 'SelectList.php' or 'SelectDelete.php', `GroupID` parameter to 'GroupView.php', 'GroupMemberList.php', 'MemberRoleChange.php', 'GroupDelete.php', '/Reports/ClassAttendance.php', or '/Reports/GroupReport.php', `PropertyID` parameter to 'PropertyEditor.php', `FamilyID` parameter to 'Canvas05Editor.php', 'CanvasEditor.php', or 'FamilyView.php', or `PledgeID` parameter to 'PledgeDetails.php' can reveal sensitive information. These parameters can cause error messages that reveal the path. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Website Baker Project (affected versions not specified) **Description** A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the `dir` parameter in the "browse.php" file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PhpList (affected versions not specified) **Description** The issue allows remote attackers to obtain sensitive information via direct requests to various PHP files. These include files such as `about.php`, `connect.php`, `domainstats.php`, `usercheck.php` in the `public html/lists/admin` directory, `attributes.php`, `dbcheck.php`, `importcsv.php`, `user.php`, `usermgt.php`, `users.php` in the `admin/commonlib/pages` directory, `helloworld.php`, `sidebar.php` in the `public html/lists/admin/plugins` directory, and `main.php` in the `public html/lists/admin/plugins/defaultplugin` directory. The sensitive information is revealed through error messages that include the path. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Website Baker Project (affected versions not specified) **Description** The issue allows remote attackers to obtain sensitive data. This can be achieved in two ways: by accessing a directory that does not exist through the `dir` parameter in browse.php, or by making a direct request to certain php files, which reveals the path in an error message. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Website Baker Project (affected versions not specified) **Description** The issue arises from the improper verification of file extensions for uploaded files, allowing remote attackers to upload and execute arbitrary PHP code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** singapore version 0.9.11 **Description** The issue allows remote attackers to obtain sensitive information via a direct request to specific files, which reveal the path in an error message. This can be achieved by accessing (1) admin.class.php, (2) any .tpl.php file in templates/admin default/, or (3) any .tpl.php file in templates/default/. **Recommendations** For version 0.9.11, consider restricting access to the admin.class.php file, as well as the .tpl.php files in the templates/admin default/ and templates/default/ directories, to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** singapore version 0.9.11 **Description** The issue is related to a cross-site scripting (XSS) vulnerability. This allows remote attackers to inject arbitrary web script or HTML via the `gallery` parameter in index.php. **Recommendations** For version 0.9.11, consider restricting access to the `gallery` parameter in index.php to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** php-fusion versions 4.x **Description** The issue concerns the `viewthread.php` file in php-fusion, which fails to check the `forum id` or `forum cat` parameters. This allows remote attackers to view protected forums by manipulating the `thread id` parameter. **Recommendations** For php-fusion version 4.x, as a temporary workaround, consider restricting access to the `viewthread.php` file until a patch is available. Additionally, avoid using the `forum id` and `forum cat` parameters in the affected API endpoint until the issue is resolved.