[Secure-testing-commits] r25041 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Fri Jan 3 21:34:21 UTC 2014
Author: fgeek-guest
Date: 2014-01-03 21:34:21 +0000 (Fri, 03 Jan 2014)
New Revision: 25041
Modified:
data/CVE/list
Log:
CVE-2013-7258, NFU
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-01-03 21:24:12 UTC (rev 25040)
+++ data/CVE/list 2014-01-03 21:34:21 UTC (rev 25041)
@@ -424,9 +424,9 @@
TODO: check
NOTE: http://blog.diniscruz.com/2013/08/neo4j-csrf-payload-to-start-processes.html
CVE-2013-7258 (Cross-site scripting (XSS) vulnerability in web2ldap 1.1.x before ...)
- TODO: check
+ - web2ldap <unfixed> (low; bug #734107)
CVE-2013-7257 (Cross-site scripting (XSS) vulnerability in Codiad 2.0.7 allows remote ...)
- TODO: check
+ NOT-FOR-US: Codiad
CVE-2013-7256 (Cross-site request forgery (CSRF) vulnerability in Opsview before ...)
NOT-FOR-US: Ops View
CVE-2013-7255 (Open redirect vulnerability in Opsview before 4.4.2 allows remote ...)
@@ -1707,7 +1707,7 @@
CVE-2013-6988
RESERVED
CVE-2013-6987 (Multiple directory traversal vulnerabilities in the FileBrowser ...)
- TODO: check
+ NOT-FOR-US: Synology DiskStation Manager
CVE-2013-6986 (The ZippyYum Subway CA Kiosk app 3.4 for iOS uses cleartext storage in ...)
NOT-FOR-US: ZippyYum
CVE-2013-6984
More information about the Secure-testing-commits
mailing list