Yu Bao

**Name of the Vulnerable Software and Affected Versions** Spring Cloud Config versions 3.1.0 through 3.1.13 Spring Cloud Config versions 4.1.0 through 4.1.9 Spring Cloud Config versions 4.2.0 through 4.2.6 Spring Cloud Config versions 4.3.0 through 4.3.2 Spring Cloud Config versions 5.0.0 through 5.0.2 **Description** The `spring-cloud-config-server` module allows applications to serve arbitrary text and binary files. A malicious user can send a request using a specially crafted URL to perform a directory traversal attack, which is a technique used to access files and directories stored outside the intended folder. Additionally, a GCP secret leak has been identified. **Recommendations** Upgrade versions 3.1.0 through 3.1.13 to 3.1.14 or greater. Upgrade versions 4.1.0 through 4.1.9 to 4.1.10 or greater. Upgrade versions 4.2.0 through 4.2.6 to 4.2.7 or greater. Upgrade versions 4.3.0 through 4.3.2 to 4.3.3 or greater. Upgrade versions 5.0.0 through 5.0.2 to 5.0.3 or greater.

**Name of the Vulnerable Software and Affected Versions** Spring Cloud Config versions 3.1.0 through 3.1.13 Spring Cloud Config versions 4.1.0 through 4.1.9 Spring Cloud Config versions 4.2.0 through 4.2.6 Spring Cloud Config versions 4.3.0 through 4.3.2 Spring Cloud Config versions 5.0.0 through 5.0.2 **Description** The base directory `spring.cloud.config.server.git.basedir` used by the Spring Cloud Config Server to clone Git repositories is susceptible to time-of-check-time-of-use (TOCTOU) attacks. TOCTOU is a race condition where a system checks the state of a resource and then performs an action based on that state, but the resource is modified between the check and the action. **Recommendations** Upgrade versions 3.1.0 through 3.1.13 to 3.1.14 or greater. Upgrade versions 4.1.0 through 4.1.9 to 4.1.10 or greater. Upgrade versions 4.2.0 through 4.2.6 to 4.2.7 or greater. Upgrade versions 4.3.0 through 4.3.2 to 4.3.3 or greater. Upgrade versions 5.0.0 through 5.0.2 to 5.0.3 or greater.

**Name of the Vulnerable Software and Affected Versions** Spring AI versions 1.0.0 through 1.0.5 Spring AI versions 1.1.0 through 1.1.4 **Description** Various `FilterExpressionConverter` implementations fail to properly escape keys and values when translating filter expression objects into specific vector store query languages. This improper escaping allows for query injection, which can enable attackers to alter vector store queries, potentially leading to data exposure and tampering. **Recommendations** Update versions 1.0.0 through 1.0.5 to 1.0.6. Update versions 1.1.0 through 1.1.4 to 1.1.5.

**Name of the Vulnerable Software and Affected Versions** HBAI-Ltd Toonflow-app versions prior to 1.1.2 **Description** A remote server-side request forgery (SSRF) exists in the 'getCodeByLink' endpoint. The issue occurs within the `fetch()` function located in the `src/routes/setting/vendorConfig/getCodeByLink.ts` file, where manipulation of the `Link` argument allows for the attack. The vendor has stated that the '/getCodeByLink' interface is designed to obtain TS code for local execution and is inherently high-risk. **Recommendations** As a temporary workaround, restrict access to the '/getCodeByLink' interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Spring Boot versions 4.0.0 through 4.0.5 **Description** When configured to use an SSL bundle, the Elasticsearch auto-configuration fails to perform hostname verification during the connection to the Elasticsearch server. Hostname verification is a security process that ensures the server's certificate matches its actual hostname to prevent man-in-the-middle attacks. **Recommendations** Upgrade to version 4.0.6 or later.

**Name of the Vulnerable Software and Affected Versions** HBAI-Ltd Toonflow-app versions prior to 1.1.2 **Description** A path traversal issue exists in the 'downloadApp' endpoint. Manipulation of the `url` argument within the `z.url()` function of the `src/routes/setting/about/downloadApp.ts` file allows for remote attacks. This exploit is characterized by high complexity and difficult exploitability. The vendor has noted that the interface is intended for online updates with a statically compiled URL in the official repository, meaning the issue typically requires users to have modified the code to be exploitable. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions badlogic pi-mono versions up to 0.58.4 Description A security issue exists in badlogic pi-mono up to version 0.58.4. The `discoverAndLoadExtensions` function within the file `packages/coding-agent/src/core/extensions/loader.ts` is susceptible to code injection. Remote exploitation is possible. The exploit has been publicly disclosed. Recommendations Update to a version newer than 0.58.4.

Name of the Vulnerable Software and Affected Versions Fosowl agenticSeek version 0.1.0 Description A code injection issue exists in the `PyInterpreter.execute` function within the `sources/tools/PyInterpreter.py` file of the query Endpoint component. This manipulation can be exploited remotely. The exploit has been publicly disclosed. Recommendations Update to a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions badlogic pi-mono versions up to 0.58.4 Description A flaw exists in the processing of the `slack.ts` file within the pi-mom Slack Bot component. This allows for authentication bypass through alternate channel manipulation. The attack can be executed remotely. Recommendations Update to a version newer than 0.58.4

Name of the Vulnerable Software and Affected Versions badlogic pi-mono version 0.58.4 Description A flaw exists in badlogic pi-mono version 0.58.4 within the SVG Artifact Handler component, specifically in the file packages/web-ui/src/tools/artifacts/SvgArtifact.ts. This issue is due to a cross-site scripting condition triggered by an unknown function. Remote exploitation is possible. The exploit has been publicly disclosed. Recommendations For badlogic pi-mono version 0.58.4, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions ScrapeGraphAI versions up to 1.74.0 Description A flaw exists in the `create sandbox and execute` function within the `scrapegraphai/nodes/generate code node.py` file of the GenerateCodeNode Component. This can lead to operating system command injection, potentially allowing remote attackers to execute arbitrary commands. The exploit has been publicly disclosed. Recommendations Versions prior to 1.74.0 should be updated. As a temporary workaround, consider disabling the `create sandbox and execute` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** samanhappy MCPHub versions up to 0.9.10 **Description** A flaw exists in samanhappy MCPHub that allows for remote operating system command injection. The issue is related to the manipulation of the `command/args` argument within the file src/controllers/serverController.ts. The exploit has been publicly released. **Recommendations** Versions prior to 0.9.10 are affected.

**Name of the Vulnerable Software and Affected Versions** samanhappy MCPHub versions up to 0.9.10 **Description** A flaw exists due to improper authentication within the `handleSseConnectionfunction` function located in the src/services/sseService.ts file. This issue allows for remote attacks, and a public exploit is available. The vendor was notified but did not respond. **Recommendations** Versions prior to 0.9.10 should be updated. Consider temporarily disabling the `handleSseConnectionfunction` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** samanhappy MCPHub versions up to 0.9.10 **Description** A server-side request forgery condition exists due to manipulation of the `baseUrl` argument within the file src/controllers/serverController.ts of the MCPRouter Service component. This issue can be exploited remotely. The exploit is publicly available. The vendor was notified but did not respond. **Recommendations** Versions prior to 0.9.10 should be updated.

**Name of the Vulnerable Software and Affected Versions** SeriaWei ZKEACMS versions up to 4.3 **Description** A flaw exists in the `Delete` function within the `src/ZKEACMS.Redirection/Controllers/UrlRedirectionController.cs` file of the POST Request Handler component. This issue results in improper authorization, potentially allowing for remote exploitation. The exploit for this issue has been publicly disclosed. The vendor was informed of this disclosure but did not provide a response. **Recommendations** Versions prior to 4.4 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** kalcaddle kodbox versions through 1.61.09 **Description** A security issue exists in kalcaddle kodbox versions through 1.61.09 related to path traversal. The `fileOut` function within the `app/controller/explorer/index.class.php` file is affected. Manipulation of the `path` argument can lead to unauthorized access. The exploit has been publicly disclosed. **Recommendations** Update to a version beyond 1.61.09.

**Name of the Vulnerable Software and Affected Versions** Harness version 3.3.0 **Description** A flaw exists in Harness that impacts the `LookupRepo` function within the `app/api/controller/gitspace/lookup repo.go` file. Manipulation of the `url` argument can lead to server-side request forgery, potentially allowing remote exploitation. The exploit has been published. **Recommendations** As a temporary workaround, consider restricting or disabling the `LookupRepo` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** SeriaWei ZKEACMS versions prior to 4.4 **Description** A weakness has been identified in SeriaWei ZKEACMS that allows for path traversal through manipulation of the `ID` argument in the `Download` function of the `EventViewerController.cs` file. This issue is remotely exploitable. The exploit has been made publicly available. The vendor was contacted but did not respond. **Recommendations** Update SeriaWei ZKEACMS to version 4.4 or later. As a temporary workaround, restrict access to the `Download` function within the `EventViewerController.cs` file. Avoid using the `ID` parameter in the `Download` function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Magicblack MacCMS version 2025.1000.4050 **Description** A vulnerability exists in Magicblack MacCMS 2025.1000.4050, specifically within the API Handler component. Manipulation of the `cjurl` argument can lead to server-side request forgery (SSRF). This issue can be exploited remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: CRMEB versions up to 5.6.1 Description: A security flaw exists in CRMEB due to improper authorization when manipulating the `ID` argument within the `Save` function of the `app/services/system/admin/SystemAdminServices.php` file, specifically in the Administrator Password Handler component. This issue may be exploited remotely. The exploit has been publicly released, and the vendor was notified but did not respond. Recommendations: Versions prior to 5.6.1 are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.