Undefined1

Name of the Vulnerable Software and Affected Versions: MAXdev MDPro (MD-Pro) version 1.0.76 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by including a specific substring in the Referer HTTP header. The `Firefox ID=` substring is used to inject SQL commands. Recommendations: For MAXdev MDPro (MD-Pro) version 1.0.76, consider restricting access to the index.php file to minimize the risk of exploitation. Avoid using the `Referer` HTTP header with untrusted input until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Flip versions 3.0 and earlier **Description** The issue allows remote attackers to download a file containing login credentials via a direct request for "var/users.txt". This is due to insufficient access control of sensitive information stored under the web root. **Recommendations** For Flip versions 3.0 and earlier, consider restricting access to the "var/users.txt" file to prevent unauthorized downloads of login credentials. As a temporary workaround, restrict access to sensitive information stored under the web root until a fix is available.

**Name of the Vulnerable Software and Affected Versions** Adam Scheinberg Flip versions 3.0 and earlier **Description** The issue allows remote attackers to create administrative accounts. This is achieved via the `un` parameter in a "register" action in the account.php file. **Recommendations** For Adam Scheinberg Flip versions 3.0 and earlier, consider restricting access to the account.php file until a patch is available. As a temporary workaround, avoid using the `un` parameter in the register action to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: PHP-Update versions 2.7 and earlier Description: The issue allows remote authenticated users to upload arbitrary PHP scripts to specific directories via the `userfile` parameter in the admin/uploads.php file. Recommendations: For PHP-Update versions 2.7 and earlier, update to a version later than 2.7 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: PHP-Update versions 2.7 and earlier Description: The issue allows remote attackers to gain privileges by setting the `rights[7]` parameter to 1 during a login action. This is related to the admin/uploads.php file. Recommendations: For PHP-Update versions 2.7 and earlier, as a temporary workaround, consider restricting access to the admin/uploads.php file until a patch is available. Avoid using the `rights[7]` parameter during login actions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Eric Gerdes Crafty Syntax Image Gallery (CSIG) versions 3.1g and earlier Description: The issue allows remote authenticated users to upload and execute arbitrary PHP code. This can be achieved by sending a multipart/form-data POST request with a .jpg filename in the `fullimage` parameter and the `ext` parameter set to `.php`. Recommendations: For versions 3.1g and earlier, restrict access to the `newimage.php` file to prevent unauthorized uploads until a fix is available. As a temporary workaround, consider disabling the execution of PHP code in uploaded files to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Eric Gerdes Crafty Syntax Image Gallery (CSIG) versions 3.1g and earlier Description: The issue allows remote authenticated users to execute arbitrary SQL commands. This is achieved via the `limitquery s` parameter when the `$projectid` variable is less than 1, preventing the `$limitquery s` from being set within `slides.php`. Recommendations: For versions 3.1g and earlier, as a temporary workaround, consider restricting access to the `slides.php` file or disabling the use of the `limitquery s` parameter until a fix is available. Avoid using the `limitquery s` parameter in the affected API endpoint until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: MonAlbum version 0.8.7 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved through SQL injection vulnerabilities in multiple parameters, including `pc` in `index.php`, and `pnom`, `pcourriel`, `pcommentaire` in `image agrandir.php`. Recommendations: For MonAlbum version 0.8.7, consider restricting access to the `index.php` and `image agrandir.php` files until a patch is available. As a temporary workaround, avoid using the `pc`, `pnom`, `pcourriel`, and `pcommentaire` parameters in the affected API endpoints.

Name of the Vulnerable Software and Affected Versions: PHP Ticket version 0.71 Description: The issue allows remote authenticated users to execute arbitrary SQL commands and obtain sensitive information, such as usernames and passwords, via the `frm search in` parameter in the search.php file. Recommendations: For PHP Ticket version 0.71, consider restricting access to the search.php file or disabling the `frm search in` parameter to minimize the risk of exploitation until a patch is available.

**Name of the Vulnerable Software and Affected Versions** TFT Gallery version 0.10 **Description** The issue allows remote attackers to download the admin password file and obtain password hashes via a direct request to "admin/passwd". This is due to insufficient access control of sensitive information stored under the web root. **Recommendations** For TFT Gallery version 0.10, consider restricting access to the "admin/passwd" file until a patch is available. As a temporary workaround, limit access to the admin directory to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** PHP Booking Calendar versions 1.0c and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands via the `event id` parameter in the details view.php file. **Recommendations** For PHP Booking Calendar versions 1.0c and earlier, consider restricting access to the details view.php file until a patch is available. As a temporary workaround, avoid using the `event id` parameter in the affected file to minimize the risk of exploitation.