[Secure-testing-commits] r33826 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Apr 25 09:27:22 UTC 2015
Author: carnil
Date: 2015-04-25 09:27:21 +0000 (Sat, 25 Apr 2015)
New Revision: 33826
Modified:
data/CVE/list
Log:
Another round of NFUs (Drupal modules)
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-04-25 09:16:51 UTC (rev 33825)
+++ data/CVE/list 2015-04-25 09:27:21 UTC (rev 33826)
@@ -109,33 +109,33 @@
CVE-2015-3356 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
NOT-FOR-US: Tadaa! module for Drupal
CVE-2015-3355 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Batch Jobs module for Drupal
CVE-2015-3354 (Cross-site request forgery (CSRF) vulnerability in the Wishlist module ...)
TODO: check
CVE-2015-3353 (Cross-site scripting (XSS) vulnerability in the Field Display Label ...)
- TODO: check
+ NOT-FOR-US: Field Display Label module for Drupal
CVE-2015-3352 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
TODO: check
CVE-2015-3351 (Multiple cross-site request forgery (CSRF) vulnerabilities in the Log ...)
- TODO: check
+ NOT-FOR-US: Log Watcher module for Drupal
CVE-2015-3350 (Cross-site request forgery (CSRF) vulnerability in the Todo Filter ...)
TODO: check
CVE-2015-3349 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Htaccess module for Drupal
CVE-2015-3348 (Cross-site scripting (XSS) vulnerability in the Cloudwords for ...)
- TODO: check
+ NOT-FOR-US: Cloudwords for Multilingual Drupal module for Drupal
CVE-2015-3347 (Cross-site request forgery (CSRF) vulnerability in the Cloudwords for ...)
- TODO: check
+ NOT-FOR-US: Cloudwords for Multilingual Drupal module for Drupal
CVE-2015-3346 (SQL injection vulnerability in the WikiWiki module before 6.x-1.2 for ...)
- TODO: check
+ NOT-FOR-US: WikiWiki module for Drupal
CVE-2015-3345 (SQL injection vulnerability in the PHPlist Integration Module before ...)
TODO: check
CVE-2015-3344 (Cross-site scripting (XSS) vulnerability in the Course module 6.x-1.x ...)
TODO: check
CVE-2015-3343 (Cross-site request forgery (CSRF) vulnerability in the OPAC module ...)
- TODO: check
+ NOT-FOR-US: OPAC module for Drupal
CVE-2015-3342 (Open redirect vulnerability in the Ubercart Currency Conversion module ...)
- TODO: check
+ NOT-FOR-US: Ubercart Currency Conversion module for Drupal
CVE-2015-3341
RESERVED
CVE-2015-3400
More information about the Secure-testing-commits
mailing list