Command injection in `/main/webservices/additional_webservices.php` in Chamilo LMS <= v1.11.20 allows unauthenticated attackers to obtain remote code execution via improper neutralisation of special characters. This is a bypass of CVE-2023-34960.

CVE-2023-3368: Security issues - Chamilo LMS

The Admin Classic Bundle provides a Backend UI for Pimcore. `AdminBundle\Security\PimcoreUserTwoFactorCondition` introduced in v11 disable the two factor authentication for all non-admin security firewalls. An authenticated user can access the system without having to provide the two factor credentials. This issue has been patched in version 1.2.2.



High

dvesh3 published GHSA-9wwg-r3c7-4vfg

Nov 27, 2023

**Package**

composer pimcore/admin-ui-classic-bundle (Composer)

**Affected versions**

< 1.2.2

**Patched versions**

1.2.2

**Description**

**Impact**

AdminBundle\Security\PimcoreUserTwoFactorCondition introduced in v11 disable the two factor authentication for all non-admin security firewalls.

An authenticated user can access the system without having to provide the 2 factor credentials.

**Patches**

Apply patch https://patch-diff.githubusercontent.com/raw/pimcore/admin-ui-classic-bundle/pull/345.patch

**Workarounds**

Upgrade to version 1.2.2 or apply the patch manually.

**Severity**

High

8.4

/ 10

**CVSS base metrics**

Attack vector

Network

Attack complexity

Low

Privileges required

High

User interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

**CVE ID**

CVE-2023-49075

**Weaknesses**

No CWEs

CVE-2023-49075: Two Factor Authentication disabled for non admin security firewalls

OroCalendarBundle enables a Calendar feature and related functionality in Oro applications. Back-office users can access information from any call event, bypassing ACL security restrictions due to insufficient security checks. This issue has been patched in version 5.0.4 and 5.1.1.

Skip to content

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

**Saved searches****Use saved searches to filter your results more quickly**

Sign up

Moderate

dkhrysev published GHSA-897w-jv7j-6r7g

Nov 27, 2023

**Package**

composer oro/crm-call-bundle (Composer)

**Affected versions**

\>=4.2.0, <=4.2.5 || >=5.0.0, <=5.0.3 || >=5.1.0, <5.1.1

**Patched versions**

5.1.1, 5.0.4

**Description**

Back-office users can access information from any call event, bypassing ACL security restrictions due to insufficient security checks.

**Severity**

**CVSS base metrics**

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

CVE-2023-32063: Incorrect call view page visibility

OroCommerce package with customer portal and non authenticated visitor website base features. Back-office users can access information about Customer and Customer User menus, bypassing ACL security restrictions due to insufficient security checks. This issue has been patched in version 5.0.11 and 5.1.1.



Skip to content

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

**Saved searches****Use saved searches to filter your results more quickly**

Sign up

Moderate

dkhrysev published GHSA-8gwj-68w6-7v6c

Nov 27, 2023

**Package**

composer oro/customer-portal (Composer)

**Affected versions**

\>=4.2.0, <=4.2.8 || >=5.0.0, <=5.0.10 || >=5.1.0, <5.1.1

**Patched versions**

5.1.1, 5.0.11

**Description**

Back-office users can access information about Customer and Customer User menus, bypassing ACL security restrictions due to insufficient security checks.

**Severity**

**CVSS base metrics**

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

CVE-2023-32064: Incorrect Customer and Customer Group Frontend Menus pages visibility

Apache NiFi 0.7.0 through 1.23.2 include the JoltTransformJSON Processor, which provides an advanced configuration user interface that is vulnerable to DOM-based cross-site scripting. If an authenticated user, who is authorized to configure a JoltTransformJSON Processor, visits a crafted URL, then arbitrary JavaScript code can be executed within the session context of the authenticated user. Upgrading to Apache NiFi 1.24.0 or 2.0.0-M1 is the recommended mitigation.

**Improper Neutralization of Input in Advanced User Interface for Jolt**

High severity GitHub Reviewed Published Nov 28, 2023 to the GitHub Advisory Database • Updated Nov 28, 2023

GHSA-68pr-6fjc-wmgm: Improper Neutralization of Input in Advanced User Interface for Jolt

A vulnerability has been identified in Pachno 1.0.6 allowing an authenticated attacker to execute a cross-site scripting (XSS) attack. The vulnerability exists due to inadequate input validation in the Project Description and comments, which enables an attacker to inject malicious java script.

**Pachno open collaboration platform**

Pachno is an open source platform for collaboration: issue tracking, project management, documentation, code and more.

With Pachno you get:

*   A powerful documentation editor for all your teams documentation needs
*   Workflow support with custom workflow configuration
*   Planning boards with kanban and scrum features
*   Issue tracking including custom fields and data
*   Time tracking for individual tasks and user
*   Team support for multiple teams and clients
*   Built-in features for supporting a wide range of projects and configurations
*   An extensible module-based platform, built to expand and improve

... and a lot more!

**Installation**

Follow the instructions in the installation guide for detailed installation instructions.

**Reporting issues**

If you find any issues, please report them in the issue tracker on our website: https://projects.pach.no

**Development and testing using Vagrant**

If you want to write code for Pachno, either to test out extensions or contribute bug-fixes or features, you can get up and running quickly using the provided development set-up.

**Getting involved**

Our community of helpful and friendly volunteers is always growing. If you are looking for an opensource project to get involved with, we'd love to get you onboard! Here, you get to influence in a meaningful way. In no particular order:

*   writing documentation, guides and articles
*   triaging (verifying) and investigating issues
*   suggest and influence new features
*   writing code
*   improve design and suggest new ones
*   contribute in our online community by either participating or moderating
*   testing and QA

If you want to pop by and chat, join us on https://pachno.zulipchat.com Prefer to get your hands dirty? Have a look at our issues on https://projects.pach.no/pachno Visit our online community at https://forum.pach.no

CVE-2023-47437: GitHub - pachno/pachno

Detailed Checkout totals information may be received by Checkout ID



Skip to content

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    

*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
*   Pricing

1.  GitHub Advisory Database
2.  GitHub Reviewed
3.  CVE-2023-32065

**OroCommerce get-totals-for-checkout API endpoint returns unwanted data**

Moderate severity GitHub Reviewed Published Nov 27, 2023 in oroinc/orocommerce • Updated Nov 27, 2023

**Package**

**Affected versions**

\>= 4.2.0, <= 4.2.10

\>= 5.0.0, < 5.0.11

\>= 5.1.0, < 5.1.1

**Patched versions**

5.0.11

5.1.1

**Description**

Detailed Checkout totals information may be received by Checkout ID

**References**

*   GHSA-88g2-xgh9-4ph2

Published to the GitHub Advisory Database

Nov 27, 2023

Last updated

Nov 27, 2023

GHSA-88g2-xgh9-4ph2: OroCommerce get-totals-for-checkout API endpoint returns unwanted data

Back-office users can access information about Customer and Customer User menus, bypassing ACL security restrictions due to insufficient security checks.



1.  GitHub Advisory Database
2.  GitHub Reviewed
3.  CVE-2023-32064

**OroCommerce Customer Portal Incorrect Customer and Customer Group Frontend Menus pages visibility**

Moderate severity GitHub Reviewed Published Nov 27, 2023 in oroinc/orocommerce • Updated Nov 27, 2023

**Package**

composer oro/customer-portal (Composer)

**Affected versions**

\>= 4.2.0, <= 4.2.8

\>= 5.0.0, < 5.0.11

\>= 5.1.0, < 5.1.1

**Patched versions**

5.0.11

5.1.1

Back-office users can access information about Customer and Customer User menus, bypassing ACL security restrictions due to insufficient security checks.

**References**

*   GHSA-8gwj-68w6-7v6c

Published to the GitHub Advisory Database

Nov 27, 2023

Last updated

Nov 27, 2023

GHSA-8gwj-68w6-7v6c: OroCommerce Customer Portal Incorrect Customer and Customer Group Frontend Menus pages visibility

Back-office users can access information from any call event, bypassing ACL security restrictions due to insufficient security checks.

Skip to content

Sign up

**CVE-2023-32063**

*   *   Actions
        
        Automate any workflow
        
    *   Packages
        
        Host and manage packages
        
    *   Security
        
        Find and fix vulnerabilities
        
    *   Codespaces
        
        Instant dev environments
        
    *   Copilot
        
        Write better code with AI
        
    *   Code review
        
        Manage code changes
        
    *   Issues
        
        Plan and track work
        
    *   Discussions
        
        Collaborate outside of code
        
    
    Explore
    
    *   All features
    *   Documentation
    *   GitHub Skills
    *   Blog
    
*   For
    
    *   Enterprise
    *   Teams
    *   Startups
    *   Education
    
    By Solution
    
    *   CI/CD & Automation
    *   DevOps
    *   DevSecOps
    
    Resources
    
    *   Learning Pathways
    *   White papers, Ebooks, Webinars
    *   Customer Stories
    *   Partners
    
*   *   GitHub Sponsors
        
        Fund open source developers
        
    
    *   The ReadME Project
        
        GitHub community articles
        
    
    Repositories
    
    *   Topics
    *   Trending
    *   Collections
    
*   Pricing

**Search code, repositories, users, issues, pull requests...**

**Provide feedback**

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

**Saved searches****Use saved searches to filter your results more quickly**

Sign in

Sign up

1.  GitHub Advisory Database
2.  GitHub Reviewed
3.  CVE-2023-32063

**OroCRMCallBundle has incorrect call view page visibility**

Moderate severity GitHub Reviewed Published Nov 27, 2023 in oroinc/crm

Vulnerability details Dependabot alerts 0

**Package**

composer oro/crm-call-bundle (Composer)

**Affected versions**

\>= 4.2.0, <= 4.2.5

\>= 5.0.0, < 5.0.4

\>= 5.1.0, < 5.1.1

**Patched versions**

5.0.4

5.1.1

**Description**

Back-office users can access information from any call event, bypassing ACL security restrictions due to insufficient security checks.

**References**

*   GHSA-897w-jv7j-6r7g
*   oroinc/OroCRMCallBundle@456b1dd
*   oroinc/OroCRMCallBundle@9a41dff

 dkhrysev published to oroinc/crm

Nov 27, 2023

Published to the GitHub Advisory Database

Nov 27, 2023

Reviewed

Nov 27, 2023

**Severity**

Moderate

5.0

/ 10

**CVSS base metrics**

Attack vector

Network

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Changed

Confidentiality

Low

Integrity

None

Availability

None

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

**Weaknesses**

No CWEs

**CVE ID**

CVE-2023-32063

**GHSA ID**

GHSA-897w-jv7j-6r7g

**Source code**

oroinc/crm

Checking history

See something to contribute? Suggest improvements for this vulnerability.

GHSA-897w-jv7j-6r7g: OroCRMCallBundle has incorrect call view page visibility

OroPlatform is a package that assist system and user calendar management. Back-office users can access information from any system calendar event, bypassing ACL security restrictions due to insufficient security checks.

**OroCalendarBundle has incorrect system calendar events visibility**

Moderate severity GitHub Reviewed Published Nov 27, 2023 in oroinc/crm • Updated Nov 27, 2023

Tag

#git