[Secure-testing-commits] r26953 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2014-05-18 06:29:50 +0000 (Sun, 18 May 2014)
New Revision: 26953

Modified:
   data/CVE/list
Log:
Add temporary items for teampass

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-05-18 06:22:32 UTC (rev 26952)
+++ data/CVE/list	2014-05-18 06:29:50 UTC (rev 26953)
@@ -1,3 +1,20 @@
+CVE-2014-XXXX [Multiple XSS vectors in items.php]
+	- teampass <itp> (bug #730180)
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/fd549b245c0f639a8d47bf4f74f92c37c053706f
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/8820c8934d9ba0508ac345e73ad0be29049ec6de
+CVE-2014-XXXX [Multiple SQL injection vectors in sources/datatable/*; and datatable.logs.php]
+	- teampass <itp> (bug #730180)
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/7715512f2bd5659cc69e063a1c513c19e384340f
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/8820c8934d9ba0508ac345e73ad0be29049ec6de
+CVE-2014-XXXX [Multiple SQL injection vectors in sources/main.queries.php]
+	- teampass <itp> (bug #730180)
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/7715512f2bd5659cc69e063a1c513c19e384340f
+CVE-2014-XXXX [File execution protection bypass via incorrect use of session variables]
+	- teampass <itp> (bug #730180)
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/7715512f2bd5659cc69e063a1c513c19e384340f
+CVE-2014-XXXX [File execution protection bypass via language path injection]
+	- teampass <itp> (bug #730180)
+	NOTE: https://github.com/nilsteampassnet/TeamPass/commit/fd549b245c0f639a8d47bf4f74f92c37c053706f
 CVE-2014-XXXX [X2Go Server privilege escalation]
 	- x2goserver <itp> (bug #465821)
 CVE-2014-XXXX [check_dhcp: arbitray option file read]