Wanglun

**Name of the Vulnerable Software and Affected Versions** TOTOLINK X15 version 1.0.0-B20230714.1105 **Description** A critical vulnerability has been found in the HTTP POST Request Handler component of TOTOLINK X15, affecting the file /boafrm/formWlanRedirect. The manipulation of the `redirect-url` argument leads to a buffer overflow. This issue can be exploited remotely, and the exploit has been disclosed to the public. **Recommendations** As a temporary workaround, consider disabling the HTTP POST Request Handler until a patch is available. Restrict access to the /boafrm/formWlanRedirect file to minimize the risk of exploitation. Avoid using the `redirect-url` argument in the affected HTTP POST Request Handler until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK N302R Plus versions up to 3.4.0-B20201028 **Description** A critical issue has been found in the HTTP POST Request Handler component, specifically in the unknown functionality of the file /boafrm/formFilter. The manipulation of the `url` argument leads to a buffer overflow. This issue can be exploited remotely. **Recommendations** For TOTOLINK N302R Plus versions up to 3.4.0-B20201028, consider restricting access to the /boafrm/formFilter file to minimize the risk of exploitation. As a temporary workaround, avoid using the `url` argument in the affected HTTP POST Request Handler until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK N302R Plus versions up to 3.4.0-B20201028 **Description** A critical vulnerability was found in the HTTP POST Request Handler component of TOTOLINK N302R Plus. The issue affects an unknown function of the file /boafrm/formPortFw. The manipulation of the `service type` argument leads to a buffer overflow. This can be exploited remotely. The exploit has been disclosed publicly and may be used. **Recommendations** For TOTOLINK N302R Plus versions up to 3.4.0-B20201028, as a temporary workaround, consider restricting access to the HTTP POST Request Handler component until a patch is available. Avoid using the `service type` argument in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** ChestnutCMS versions up to 15.1 **Description** A critical issue has been found in the API Endpoint component, specifically affecting the /dev-api/groovy/exec file. This issue leads to deserialization and can be exploited remotely. The exploit has been publicly disclosed. **Recommendations** For ChestnutCMS versions up to 15.1, as a temporary workaround, consider restricting access to the /dev-api/groovy/exec API endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Computer Store System version 1.0 **Description** A critical issue has been found in the SourceCodester Computer Store System. This issue affects the function `Add` of the file `main.c`. The manipulation of the argument `laptopcompany/RAM/Processor` leads to a stack-based buffer overflow. An attack must be approached locally. **Recommendations** For SourceCodester Computer Store System version 1.0, as a temporary workaround, consider disabling the `Add` function until a patch is available. Restrict access to the `main.c` file to minimize the risk of exploitation. Avoid using the argument `laptopcompany/RAM/Processor` in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fujian Kelixun version 1.0 **Description** A critical issue has been found in the Filename Handler component, specifically affecting the /app/fax/fax view.php file. The manipulation of the `fax file` argument leads to os command injection, allowing for remote attacks. The exploit has been publicly disclosed, and the vendor was contacted but did not respond. **Recommendations** For Fujian Kelixun version 1.0, as a temporary workaround, consider restricting access to the vulnerable `fax view.php` file until a patch is available. Additionally, avoid using the `fax file` argument in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda A15 versions 15.13.07.09 through 15.13.07.13 **Description** A critical issue affects an unknown part of the file `/goform/multimodalAdd` of the component HTTP POST Request Handler, leading to buffer overflow. The manipulation can be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Tenda A15 versions 15.13.07.09 through 15.13.07.13, as a temporary workaround, consider disabling the `/goform/multimodalAdd` endpoint until a patch is available. Restrict access to the HTTP POST Request Handler to minimize the risk of exploitation. Avoid using the vulnerable component until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC10 version 16.03.10.13 **Description** A critical issue affects an unknown functionality of the file /goform/UserCongratulationsExec. The manipulation of the `getuid` argument leads to a buffer overflow. This issue can be exploited remotely. The exploit has been publicly disclosed and may be used. **Recommendations** As a temporary workaround, consider disabling access to the /goform/UserCongratulationsExec file until a patch is available. Restrict the manipulation of the `getuid` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: itsourcecode Placement Management System version 1.0 Description: A critical issue affects the processing of the file /drive.php. The manipulation of the `ID` argument leads to SQL injection. This issue can be exploited remotely. Recommendations: For itsourcecode Placement Management System version 1.0, consider restricting access to the /drive.php file until a patch is available. As a temporary workaround, avoid using the `ID` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: itsourcecode Placement Management System version 1.0 Description: A critical issue has been discovered, affecting an unknown function of the file /edit profile.php. The manipulation of the `Name` argument leads to SQL injection. This issue can be exploited remotely. Recommendations: For itsourcecode Placement Management System version 1.0, consider restricting access to the /edit profile.php file until a patch is available. As a temporary workaround, avoid using the `Name` argument in the affected function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: itsourcecode Placement Management System version 1.0 Description: A critical issue was found in the itsourcecode Placement Management System, affecting an unknown functionality of the file /all student.php. The manipulation of the `delete` argument leads to SQL injection. The attack can be launched remotely. Recommendations: For itsourcecode Placement Management System version 1.0, consider restricting access to the /all student.php file until a patch is available. As a temporary workaround, avoid using the `delete` argument in the affected file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Music Class Enrollment System version 1.0 **Description** A critical vulnerability was found in the SourceCodester Music Class Enrollment System. The issue affects an unknown function of the file /manage class.php. The manipulation of the `ID` argument leads to SQL injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For SourceCodester Music Class Enrollment System version 1.0, consider disabling the `ID` argument in the /manage class.php file until a patch is available. Restrict access to the /manage class.php file to minimize the risk of exploitation. Avoid using the `ID` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Tutor Portal version 1.0 **Description** A critical issue has been found, affecting an unknown part of the file /tutor/courses/view course.php. The manipulation of the `ID` argument leads to SQL injection. It is possible to initiate the attack remotely. **Recommendations** For SourceCodester Online Tutor Portal version 1.0, consider restricting access to the `/tutor/courses/view course.php` file until a patch is available. As a temporary workaround, avoid using the `ID` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Apartment Visitors Management System version 1.0 **Description** A critical issue affects the processing of the file /add-apartment.php, where the manipulation of the `apartmentno` argument leads to SQL injection. The attack can be initiated remotely. Other parameters might also be affected. **Recommendations** For SourceCodester Apartment Visitors Management System version 1.0, consider restricting access to the /add-apartment.php file until a patch is available. As a temporary workaround, avoid using the `apartmentno` argument in the affected file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** SourceCodester Online Tutor Portal version 1.0 **Description** A critical issue has been identified, affecting the file /tutor/courses/manage course.php. The manipulation of the `ID` argument leads to SQL injection. This issue can be exploited remotely. **Recommendations** For SourceCodester Online Tutor Portal version 1.0, consider restricting access to the `/tutor/courses/manage course.php` file until a patch is available. As a temporary workaround, avoid using the `ID` argument in the affected file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** oretnom23/SourceCodester Apartment Visitor Management System version 1.0 **Description** A critical vulnerability was found in the oretnom23/SourceCodester Apartment Visitor Management System. The issue affects an unknown function of the file /remove-apartment.php. The manipulation of the `ID` argument leads to SQL injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. **Recommendations** As a temporary workaround, consider disabling the unknown function of the /remove-apartment.php file until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Chengdu Everbrite Network Technology BeikeShop versions up to 1.5.5 Description: A problematic issue was found in BeikeShop, affecting the `exportZip` function of the file `/admin/file manager/export`. The manipulation of the `path` argument leads to path traversal. This issue can be exploited remotely. Recommendations: For versions up to 1.5.5, as a temporary workaround, consider disabling the `exportZip` function until a patch is available. Restrict access to the `/admin/file manager/export` endpoint to minimize the risk of exploitation. Avoid using the `path` argument in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Chengdu Everbrite Network Technology BeikeShop versions up to 1.5.5 Description: A critical issue has been found, affecting the `rename` function of the file `/Admin/Http/Controllers/FileManagerController.php`. The manipulation of the `new name` argument leads to unrestricted upload. This issue can be exploited remotely. Recommendations: For versions up to 1.5.5, as a temporary workaround, consider disabling the `rename` function of the `FileManagerController.php` file until a patch is available. Restrict access to the `/Admin/Http/Controllers/FileManagerController.php` file to minimize the risk of exploitation. Avoid using the `new name` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Chengdu Everbrite Network Technology BeikeShop versions up to 1.5.5 Description: A critical vulnerability was found in the function `destroyFiles` of the file `/admin/file manager/files`. The manipulation of the argument `files` leads to path traversal. The attack can be launched remotely. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For versions up to 1.5.5, as a temporary workaround, consider disabling the `destroyFiles` function until a patch is available. Restrict access to the `/admin/file manager/files` file to minimize the risk of exploitation. Avoid using the argument `files` in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Laravel Property Management System version 1.0 Description: A critical issue affects the `upload` function of the `PropertiesController.php` file, allowing for unrestricted file upload through the manipulation of the `file` argument. This can be initiated remotely. Recommendations: For Laravel Property Management System version 1.0, consider disabling the `upload` function of the `PropertiesController.php` file until a patch is available to prevent unrestricted file uploads. Restrict access to the `PropertiesController.php` file to minimize the risk of exploitation. Avoid using the `file` argument in the affected function until the issue is resolved.