Publish Advisories

GHSA-428h-8xhf-g3cw
GHSA-558g-hvr5-cchr
GHSA-5jm3-f2cq-hw7c
GHSA-5qq8-6gv4-wmcc
GHSA-fg7c-375r-xggv
GHSA-fqr4-q363-g7gm
GHSA-mg2w-x76x-59h8
GHSA-pmx8-fmc2-4rjp
GHSA-prmh-rp39-qc4m
GHSA-rgf4-44r9-4r27
GHSA-x7g6-7v62-f6fh

Author: advisory-database[bot]

advisories/unreviewed/2026/02/GHSA-428h-8xhf-g3cw/GHSA-428h-8xhf-g3cw.json

@@ -0,0 +1,60 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-428h-8xhf-g3cw",
+  "modified": "2026-02-28T00:31:02Z",
+  "published": "2026-02-28T00:31:02Z",
+  "aliases": [
+    "CVE-2026-28517"
+  ],
+  "details": "openDCIM version 23.04, through commit 4467e9c4, contains an OS command injection vulnerability in report_network_map.php. The application retrieves the 'dot' configuration parameter from the database and passes it directly to exec() without validation or sanitation. If an attacker can modify the fac_Config.dot value, arbitrary commands may be executed in the context of the web server process.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28517"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/pull/1664"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/pull/1664/changes/8f7ab2a710086a9c8c269560793e47c577ddda09"
+    },
+    {
+      "type": "WEB",
+      "url": "https://chocapikk.com/posts/2026/opendcim-sqli-to-rce"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Chocapikk/opendcim-exploit"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/blob/4467e9c4/report_network_map.php#L467"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/blob/4467e9c4/report_network_map.php#L7"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/opendcim-os-command-injection-via-dot-configuration-parameter"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-78"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-02-27T23:16:06Z"
+  }
+}

advisories/unreviewed/2026/02/GHSA-558g-hvr5-cchr/GHSA-558g-hvr5-cchr.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-558g-hvr5-cchr",
-  "modified": "2026-02-24T15:30:27Z",
+  "modified": "2026-02-28T00:31:01Z",
   "published": "2026-02-20T00:31:53Z",
   "aliases": [
     "CVE-2025-13672"
   ],
   "details": "Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ Web Site Management Server allows Reflected XSS. The vulnerability could allow injecting malicious JavaScript inside URL parameters that was then rendered with the preview of the page, so that malicious scripts could be executed on the client side.\n\nThis issue affects Web Site Management Server: 16.7.0, 16.7.1.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:N/R:U/V:D/RE:H/U:Red"

advisories/unreviewed/2026/02/GHSA-5jm3-f2cq-hw7c/GHSA-5jm3-f2cq-hw7c.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-5jm3-f2cq-hw7c",
-  "modified": "2026-02-20T00:31:53Z",
+  "modified": "2026-02-28T00:31:01Z",
   "published": "2026-02-20T00:31:53Z",
   "aliases": [
     "CVE-2025-8054"
   ],
   "details": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in OpenText™ XM Fax allows Path Traversal. \n\nThe vulnerability could allow an attacker to arbitrarily disclose content of files on the local filesystem. This issue affects XM Fax: 24.2.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:A/V:D/RE:M/U:Amber"

advisories/unreviewed/2026/02/GHSA-5qq8-6gv4-wmcc/GHSA-5qq8-6gv4-wmcc.json

@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-5qq8-6gv4-wmcc",
-  "modified": "2026-02-18T18:30:39Z",
+  "modified": "2026-02-28T00:31:00Z",
   "published": "2026-02-18T18:30:39Z",
   "aliases": [
     "CVE-2025-15579"

advisories/unreviewed/2026/02/GHSA-fg7c-375r-xggv/GHSA-fg7c-375r-xggv.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-fg7c-375r-xggv",
-  "modified": "2026-02-24T15:30:27Z",
+  "modified": "2026-02-28T00:31:01Z",
   "published": "2026-02-20T00:31:53Z",
   "aliases": [
     "CVE-2025-9208"
   ],
   "details": "Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ Web Site Management Server allows Stored XSS. The vulnerability could execute malicious scripts on the client side when the download query parameter is removed from the file URL, allowing attackers to compromise user sessions and data.\n\nThis issue affects Web Site Management Server: 16.7.X, 16.8, 16.8.1.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:N/R:U/V:D/RE:H/U:Red"

advisories/unreviewed/2026/02/GHSA-fqr4-q363-g7gm/GHSA-fqr4-q363-g7gm.json

@@ -1,13 +1,17 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-fqr4-q363-g7gm",
-  "modified": "2026-02-24T15:30:27Z",
+  "modified": "2026-02-28T00:31:01Z",
   "published": "2026-02-20T00:31:53Z",
   "aliases": [
     "CVE-2025-13671"
   ],
   "details": "Cross-Site Request Forgery (CSRF) vulnerability in OpenText™ Web Site Management Server allows Cross Site Request Forgery. The vulnerability could make a user, with active session inside the product, click on a page that contains this malicious HTML triggering to perform changes unconsciously.\n\nThis issue affects Web Site Management Server: 16.7.0, 16.7.1.",
   "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"
+    },
     {
       "type": "CVSS_V4",
       "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:H/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:N/R:U/V:D/RE:H/U:Red"

advisories/unreviewed/2026/02/GHSA-mg2w-x76x-59h8/GHSA-mg2w-x76x-59h8.json

@@ -0,0 +1,64 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-mg2w-x76x-59h8",
+  "modified": "2026-02-28T00:31:02Z",
+  "published": "2026-02-28T00:31:02Z",
+  "aliases": [
+    "CVE-2026-28515"
+  ],
+  "details": "openDCIM version 23.04, through commit 4467e9c4, contains a missing authorization vulnerability in install.php and container-install.php. The installer and upgrade handler expose LDAP configuration functionality without enforcing application role checks. Any authenticated user can access this functionality regardless of assigned privileges. In deployments where REMOTE_USER is set without authentication enforcement, the endpoint may be accessible without credentials. This allows unauthorized modification of application configuration.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28515"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/pull/1664"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/pull/1664/changes/8f7ab2a710086a9c8c269560793e47c577ddda09"
+    },
+    {
+      "type": "WEB",
+      "url": "https://chocapikk.com/posts/2026/opendcim-sqli-to-rce"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Chocapikk/opendcim-exploit"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/blob/4467e9c4/container-install.php#L421-L435"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/blob/4467e9c4/install.php#L293"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/blob/4467e9c4/install.php#L420-L434"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/opendcim-missing-authorization-in-install-php"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-862"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-02-27T23:16:05Z"
+  }
+}

advisories/unreviewed/2026/02/GHSA-pmx8-fmc2-4rjp/GHSA-pmx8-fmc2-4rjp.json

@@ -0,0 +1,40 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-pmx8-fmc2-4rjp",
+  "modified": "2026-02-28T00:31:02Z",
+  "published": "2026-02-28T00:31:01Z",
+  "aliases": [
+    "CVE-2026-27759"
+  ],
+  "details": "Featured Image from Content (featured-image-from-content) WordPress plugin versions prior to 1.7 contain an authenticated server-side request forgery vulnerability that allows Author-level users to fetch internal HTTP resources. Attackers can exploit insecure URL fetching and file write operations to retrieve sensitive internal data and store it in web-accessible upload directories.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27759"
+    },
+    {
+      "type": "WEB",
+      "url": "https://wordpress.org/plugins/featured-image-from-content"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/featured-image-from-content-authenticated-ssrf-via-save-post"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-918"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-02-27T23:16:04Z"
+  }
+}

advisories/unreviewed/2026/02/GHSA-prmh-rp39-qc4m/GHSA-prmh-rp39-qc4m.json

@@ -0,0 +1,60 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-prmh-rp39-qc4m",
+  "modified": "2026-02-28T00:31:02Z",
+  "published": "2026-02-28T00:31:02Z",
+  "aliases": [
+    "CVE-2026-28516"
+  ],
+  "details": "openDCIM version 23.04, through commit 4467e9c4, contains a SQL injection vulnerability in Config::UpdateParameter. The install.php and container-install.php handlers pass user-supplied input directly into SQL statements using string interpolation without prepared statements or proper input sanitation. An authenticated user can execute arbitrary SQL statements against the underlying database.",
+  "severity": [
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
+    }
+  ],
+  "affected": [],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-28516"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/pull/1664"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/pull/1664/changes/8f7ab2a710086a9c8c269560793e47c577ddda09"
+    },
+    {
+      "type": "WEB",
+      "url": "https://chocapikk.com/posts/2026/opendcim-sqli-to-rce"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/Chocapikk/opendcim-exploit"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/blob/4467e9c4/config.inc.php#L75-L90"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/opendcim/openDCIM/blob/4467e9c4/install.php#L420-L434"
+    },
+    {
+      "type": "WEB",
+      "url": "https://www.vulncheck.com/advisories/opendcim-sql-injection-in-config-updateparameter"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-89"
+    ],
+    "severity": "CRITICAL",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2026-02-27T23:16:06Z"
+  }
+}

advisories/unreviewed/2026/02/GHSA-rgf4-44r9-4r27/GHSA-rgf4-44r9-4r27.json

@@ -33,7 +33,9 @@
     }
   ],
   "database_specific": {
-    "cwe_ids": [],
+    "cwe_ids": [
+      "CWE-787"
+    ],
     "severity": "MODERATE",
     "github_reviewed": false,
     "github_reviewed_at": null,