[Secure-testing-commits] r30468 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 1 07:38:09 UTC 2014
Author: carnil
Date: 2014-12-01 07:38:09 +0000 (Mon, 01 Dec 2014)
New Revision: 30468
Modified:
data/CVE/list
Log:
Add more mantis issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-30 21:49:53 UTC (rev 30467)
+++ data/CVE/list 2014-12-01 07:38:09 UTC (rev 30468)
@@ -1,3 +1,28 @@
+CVE-2014-XXXX [XSS in file uploads]
+ - mantis <removed>
+ [squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: http://github.com/mantisbt/mantisbt/commit/9fb8cf36f
+ NOTE: http://www.mantisbt.org/bugs/view.php?id=17874
+CVE-2014-XXXX [XSS in string_insert_hrefs()]
+ - mantis <removed>
+ [squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: http://github.com/mantisbt/mantisbt/commit/05378e00
+ NOTE: http://www.mantisbt.org/bugs/view.php?id=17297
+CVE-2014-XXXX [XSS in admin panel / copy_field.php]
+ - mantis <removed>
+ [squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: http://github.com/mantisbt/mantisbt/commit/e5fc835a
+ NOTE: http://www.mantisbt.org/bugs/view.php?id=17876
+CVE-2014-XXXX [XSS in projax_api.php]
+ - mantis <removed>
+ [squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: http://github.com/mantisbt/mantisbt/commit/0bff06ec
+ NOTE: http://www.mantisbt.org/bugs/view.php?id=17583
+CVE-2014-XXXX [XSS in extended project browser]
+ - mantis <removed>
+ [squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
+ NOTE: http://github.com/mantisbt/mantisbt/commit/511564cc
+ NOTE: http://www.mantisbt.org/bugs/view.php?id=17890
CVE-2014-XXXX [PHP Object Injection in MantisBT filter API]
- mantis <removed>
[squeeze] - mantis <end-of-life> (Unsupported in squeeze-lts)
More information about the Secure-testing-commits
mailing list