Zonia3000

**Name of the Vulnerable Software and Affected Versions** sudo-rs versions prior to 0.2.6 **Description** The issue allows users with limited sudo privileges to enumerate the sudoers file, revealing sensitive information about other users' permissions. This can be achieved using the `-U` flag. Attackers can collect information that can be used for more targeted attacks. Systems where users either do not have sudo privileges or have the ability to run all commands as root through sudo are not affected. **Recommendations** For versions prior to 0.2.6, update to version 0.2.6 to resolve the issue. As a temporary workaround, consider restricting the use of the `-U` flag to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Joplin versions prior to 3.3.3 **Description** The issue concerns a privilege escalation vulnerability in the Joplin server. This vulnerability allows non-admin users to exploit the API endpoint `PATCH /api/users/:id` to set the `is admin` field to 1, enabling them to perform administrative actions without proper authorization. **Recommendations** For versions prior to 3.3.3, update to version 3.3.3 to resolve the issue. As a temporary workaround, consider restricting access to the `PATCH /api/users/:id` API endpoint to prevent exploitation. Additionally, restrict the ability to set the `is admin` field to authorized personnel only.

**Name of the Vulnerable Software and Affected Versions** Joplin versions prior to 3.3.3 **Description** The issue allows path traversal in Joplin Server when the static file path starts with `css/pluginAssets` or `js/pluginAssets`. The `findLocalFile` function in the default route calls `localFileFromUrl` to check for special `pluginAssets` paths. If the function returns a path, the result is returned directly, without checking for path traversal, enabling attackers to read files outside the intended directories. **Recommendations** For versions prior to 3.3.3, update to version 3.3.3 to resolve the issue. As a temporary workaround, consider restricting access to the `css/pluginAssets` and `js/pluginAssets` paths to minimize the risk of exploitation. Avoid using the `localFileFromUrl` function in the default route until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Craft CMS versions prior to 4.4.15 **Description** This is a high-impact, low-complexity attack vector. Craft CMS is a platform for creating digital experiences. The issue is related to improper code generation control, which can allow a remote attacker to execute arbitrary code. About 1,299 results were found using the ZoomEyeDork app:"Craft CMS". **Recommendations** To mitigate the issue, update to at least Craft CMS version 4.4.15. Additionally, refresh your security key by running the `php craft setup/security-key` command and update the `CRAFT SECURITY KEY` environment variable in all production environments. Consider refreshing other private keys stored as environment variables. As a precaution, force all users to reset their passwords by running `php craft resave/users --set passwordResetRequired --to "fn() => true"`.