Xenofon Vassilakopoulos

**Name of the Vulnerable Software and Affected Versions** CloudMe version 1.11.2 **Description** A buffer overflow allows remote attackers to execute arbitrary code by sending specially crafted network packets to the service running on port '8888'. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Hide My WP WordPress plugin versions prior to 6.2.9 **Description** The issue arises from the plugin's failure to properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action. This AJAX action is available to unauthenticated users, leading to a SQL injection. **Recommendations** For versions prior to 6.2.9, update to version 6.2.9 or later to resolve the issue. As a temporary workaround, consider restricting access to the AJAX action until the update is applied.