Ting

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.112-UTF8 **Description** A critical issue was found in DedeCMS, affecting an unknown function of the file stepselect main.php. The manipulation of the `ids` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For DedeCMS version 5.7.112-UTF8, as a temporary workaround, consider restricting access to the stepselect main.php file until a patch is available. Avoid using the `ids` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Zhejiang Land Zongheng Network Technology O2OA up to 20240403 **Description** A problematic vulnerability has been found, affecting an unknown function of the file /x portal assemble surface/jaxrs/portal/list?v=8.2.3-4-43f4fe3. This issue leads to information disclosure and can be exploited remotely, although the complexity of the attack is rather high and the exploitability is difficult. **Recommendations** For Zhejiang Land Zongheng Network Technology O2OA up to 20240403, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Xiamen Four-Faith RMP Router Management Platform version 5.2.2 **Description** A critical issue has been found in the Xiamen Four-Faith RMP Router Management Platform. The problem affects the file /Device/Device/GetDeviceInfoList?deviceCode=&searchField=&deviceState=. The manipulation of the `groupId` argument leads to SQL injection. This issue can be exploited remotely. The details of the exploit have been made public. **Recommendations** For Xiamen Four-Faith RMP Router Management Platform version 5.2.2, as a temporary workaround, consider restricting access to the `/Device/Device/GetDeviceInfoList` API endpoint to minimize the risk of exploitation. Avoid using the `groupId` argument in this endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** DedeCMS version 5.7.112-UTF8 **Description** A vulnerability has been found in DedeCMS, affecting an unknown functionality of the file update guide.php. The manipulation of the argument `files` leads to path traversal: '../filedir'. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** For DedeCMS version 5.7.112-UTF8, as a temporary workaround, consider restricting access to the update guide.php file until a patch is available. Avoid using the `files` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Byzoro Smart S42 Management Platform versions up to 20240219 **Description** A critical vulnerability has been found in the Byzoro Smart S42 Management Platform, affecting an unknown functionality of the file /useratte/userattestation.php. The manipulation of the `hidwel` argument leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For versions up to 20240219, as a temporary workaround, consider restricting access to the /useratte/userattestation.php file until a patch is available. Avoid using the `hidwel` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZhongBangKeJi CRMEB version 5.2.2 **Description** A critical issue affects the function save/delete of the file "/adminapi/system/crud". The manipulation leads to path traversal. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** For ZhongBangKeJi CRMEB version 5.2.2, as a temporary workaround, consider disabling the save/delete function of the file "/adminapi/system/crud" until a patch is available. Restrict access to the "/adminapi/system/crud" endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ZhongBangKeJi CRMEB version 5.2.2 **Description** A problematic issue has been found in the software, affecting the `openfile` function of the file "/adminapi/system/file/openfile". This issue leads to absolute path traversal. The exploit has been disclosed to the public. The vendor was contacted about this disclosure but did not respond. **Recommendations** For ZhongBangKeJi CRMEB version 5.2.2, consider disabling the `openfile` function of the file "/adminapi/system/file/openfile" as a temporary workaround to minimize the risk of exploitation. Restrict access to the "/adminapi/system/file/openfile" endpoint to prevent absolute path traversal attacks. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Nanning Ontall Longxing Industrial Development Zone Project Construction and Installation Management System versions up to 20231026 **Description** A critical issue has been found in the system, affecting an unknown functionality of the file login.aspx. The manipulation of the `tbxUserName` argument leads to sql injection. This issue can be exploited remotely. **Recommendations** For versions up to 20231026, as a temporary workaround, consider restricting access to the login.aspx file until a patch is available. Avoid using the `tbxUserName` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Shaanxi Chanming Education Technology Score Query System version 5.0 **Description** A critical issue affects the system's unknown processing, allowing for SQL injection through the manipulation of the `stuIdCard` argument. The attack can be initiated remotely. **Recommendations** For version 5.0, consider disabling the `stuIdCard` argument until a patch is available to prevent SQL injection attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.