Vtim

Name of the Vulnerable Software and Affected Versions: Orca HCM from LEARNING DIGITAL (affected versions not specified) Description: The issue allows remote attackers with regular privileges to upload and run web shells due to an Arbitrary File Upload vulnerability. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Orca HCM from Learning Digital (affected versions not specified) Description: The issue allows attackers with regular privileges to inject arbitrary SQL commands, enabling them to read, modify, and delete database contents. This is a SQL Injection vulnerability. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** DreamMaker from Interinfo (affected versions not specified) **Description** The issue allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. This is due to a Path Traversal vulnerability and the lack of restriction on the types of uploaded files. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CHANGING Mobile (affected versions not specified) **Description** The issue concerns the Mobile One Time Password functionality, which does not properly filter parameters for the file download feature. This allows remote attackers with administrator privileges to read arbitrary files on the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ITPison OMICARD EDM (affected versions not specified) **Description** The issue allows unauthenticated remote attackers to modify specific URL parameters, enabling them to conduct Server-Side Request Forgery (SSRF) attacks. This allows attackers to probe internal network information. No estimated number of potentially affected devices or real-world incidents are mentioned. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ITPison OMICARD EDM (affected versions not specified) **Description** The issue is related to a path traversal vulnerability within the `FileName` parameter in a specific function. This vulnerability can be exploited by an unauthenticated remote attacker to bypass authentication and download arbitrary system files. The vulnerability is associated with incorrect restriction of the directory path name with limited access when processing the `FileName` parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the vulnerable function that processes the `FileName` parameter to minimize the risk of exploitation. Avoid using the `FileName` parameter in the affected function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** ITPison OMICARD EDM (affected versions not specified) **Description** The SMS-related function in ITPison OMICARD EDM has insufficient validation for user input, allowing an unauthenticated remote attacker to inject arbitrary SQL commands. This can enable the attacker to access, modify, and delete database data. The vulnerability is related to the lack of protection for the SQL query structure, which can be exploited by a remote attacker to execute arbitrary SQL code and gain read, modify, or delete access to data. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ITPison OMICARD EDM (affected versions not specified) **Description** The file uploading function in ITPison OMICARD EDM does not restrict the upload of files with dangerous types. An unauthenticated remote attacker can exploit this issue to upload and run arbitrary executable files, allowing them to perform arbitrary system commands or disrupt service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MAIL2000 versions 6.0 and 7.0 **Description** The issue allows for the execution of arbitrary code via the `ACTION` parameter in the "/cgi-bin/go" page without requiring authentication. This can be executed for any user accessing the page. It is reported to affect many mail systems of governments, organizations, companies, and universities. **Recommendations** For MAIL2000 versions 6.0 and 7.0, consider restricting access to the "/cgi-bin/go" page until a fix is available, and avoid using the `ACTION` parameter in this endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** MAIL2000 versions 6.0 and 7.0 **Description** The issue is related to a cross-site scripting (XSS) vulnerability in the login feature of the "/cgi-bin/portal" endpoint, allowing the execution of arbitrary code via any parameter. This affects many mail systems of governments, organizations, companies, and universities. **Recommendations** For MAIL2000 versions 6.0 and 7.0, as a temporary workaround, consider restricting access to the "/cgi-bin/portal" endpoint until a patch is available. Avoid using any parameters in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.