X0Kster

**Name of the Vulnerable Software and Affected Versions** Tribisur versions 2.1 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the `id` parameter to "cat main.php" and the `cat` parameter to "forum.php" in a "liste" action. **Recommendations** For Tribisur versions 2.1 and earlier, update to a version later than 2.1 to resolve the issue. As a temporary workaround, consider restricting access to the `cat main.php` and `forum.php` files until a patch is available. Avoid using the `id` and `cat` parameters in the affected API endpoints until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** XCMS versions 1.83 and earlier **Description** The issue allows remote attackers to conduct direct static code injection attacks and execute arbitrary code via the `testo 0` parameter in a cpie admin action to "index.php", which writes to "dati/generali/footer.dtb" (aka the XCMS footer). This occurs because "cpie.php" sends a redirect to the web browser but does not exit. **Recommendations** For XCMS versions 1.83 and earlier, avoid using the `testo 0` parameter in the cpie admin action to "index.php" until a fix is available. As a temporary workaround, consider restricting write access to "dati/generali/footer.dtb" to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** WebPortal CMS versions 0.6.0 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `m` parameter in the "index.php" file. **Recommendations** For WebPortal CMS versions 0.6.0 and earlier, update to a version later than 0.6.0 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** MyPHP Forum versions 3.0 and earlier **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter in the "faq.php" file. **Recommendations** For MyPHP Forum versions 3.0 and earlier, update to a version later than 3.0 to resolve the issue. As a temporary workaround, consider restricting access to the `id` parameter in the "faq.php" file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** MMSLamp (affected versions not specified) **Description** A SQL injection issue allows remote attackers to execute arbitrary SQL commands. This is achieved by manipulating the `idpro` parameter in a "prodotti dettaglio" action. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** nicLOR-CMS (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `id` parameter in a "sezione" page action to "index.php". **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** XCMS (affected versions not specified) **Description** A cross-site request forgery (CSRF) issue exists in the cpass functionality of an admin action in index.php, allowing remote attackers to change arbitrary passwords. This is possibly related to certain `password ` and `rpassword ` parameters, as well as timestamp values. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.