[Secure-testing-commits] r35342 - data/CVE
Helmut Grohne
helmutg at moszumanska.debian.org
Mon Jul 6 13:24:54 UTC 2015
Author: helmutg
Date: 2015-07-06 13:24:54 +0000 (Mon, 06 Jul 2015)
New Revision: 35342
Modified:
data/CVE/list
Log:
Drupal module NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-06 11:51:23 UTC (rev 35341)
+++ data/CVE/list 2015-07-06 13:24:54 UTC (rev 35342)
@@ -2082,115 +2082,115 @@
CVE-2015-4399
RESERVED
CVE-2015-4398 (Open redirect vulnerability in the Chaos tool suite (ctools) module ...)
- TODO: check
+ NOT-FOR-US: Drupal module Chaos tool suite
CVE-2015-4397 (Cross-site request forgery (CSRF) vulnerability in the Node Template ...)
- TODO: check
+ NOT-FOR-US: Drupal module Node Template
CVE-2015-4396 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Drupal module Keyword Research
CVE-2015-4395 (The HybridAuth Social Login module 7.x-2.x before 7.x-2.10 for Drupal ...)
- TODO: check
+ NOT-FOR-US: Drupal module HybridAuth Social Login
CVE-2015-4394 (The Services module 7.x-3.x before 7.x-3.12 for Drupal allows remote ...)
- TODO: check
+ NOT-FOR-US: Drupal module Services
CVE-2015-4393 (The resource/endpoint for uploading files in the Services module ...)
- TODO: check
+ NOT-FOR-US: Drupal module Services
CVE-2015-4392 (Cross-site scripting (XSS) vulnerability in the Display Suite module ...)
- TODO: check
+ NOT-FOR-US: Drupal module Display Suite
CVE-2015-4391 (Cross-site request forgery (CSRF) vulnerability in the CiviCRM private ...)
- TODO: check
+ NOT-FOR-US: Drupal module CiviCRM
CVE-2015-4390 (Multiple cross-site request forgery (CSRF) vulnerabilities in the User ...)
- TODO: check
+ NOT-FOR-US: Drupal module User Import
CVE-2015-4389 (The Open Graph Importer (og_tag_importer) 7.x-1.x for Drupal does not ...)
- TODO: check
+ NOT-FOR-US: Drupal module Open Graph Importer
CVE-2015-4388 (Cross-site scripting (XSS) vulnerability in the Current Search Links ...)
- TODO: check
+ NOT-FOR-US: Drupal module Current Search Links
CVE-2015-4387 (Cross-site scripting (XSS) vulnerability in unspecified administration ...)
- TODO: check
+ NOT-FOR-US: Drupal module Password Policy
CVE-2015-4386 (Multiple cross-site scripting (XSS) vulnerabilities in unspecified ...)
- TODO: check
+ NOT-FOR-US: Drupal module EntityBulkDelete
CVE-2015-4385 (Cross-site scripting (XSS) vulnerability in unspecified administration ...)
- TODO: check
+ NOT-FOR-US: Drupal module Imagefield Info
CVE-2015-4384 (Cross-site scripting (XSS) vulnerability in the Ubercart Webform ...)
- TODO: check
+ NOT-FOR-US: Drupal module Ubercart Webform Checkout Pane
CVE-2015-4383 (Cross-site request forgery (CSRF) vulnerability in the Decisions ...)
- TODO: check
+ NOT-FOR-US: Drupal module Decisions
CVE-2015-4382 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Drupal module Invoice
CVE-2015-4381 (Cross-site scripting (XSS) vulnerability in the Invoice module 6.x-1.x ...)
- TODO: check
+ NOT-FOR-US: Drupal module Invoice
CVE-2015-4380 (Cross-site scripting (XSS) vulnerability in the Linear Case module ...)
- TODO: check
+ NOT-FOR-US: Drupal module Linear Case
CVE-2015-4379 (Cross-site request forgery (CSRF) vulnerability in the Webform ...)
- TODO: check
+ NOT-FOR-US: Drupal module Webform Multiple File Upload
CVE-2015-4378 (Cross-site scripting (XSS) vulnerability in the Crumbs module 7.x-2.x ...)
- TODO: check
+ NOT-FOR-US: Drupal module Crumbs
CVE-2015-4377 (Cross-site scripting (XSS) vulnerability in unspecified administration ...)
- TODO: check
+ NOT-FOR-US: Drupal module Petition
CVE-2015-4376 (Cross-site scripting (XSS) vulnerability in the Profile2 Privacy ...)
- TODO: check
+ NOT-FOR-US: Drupal module Profile2 Privacy
CVE-2015-4375 (The Chaos tool suite (ctools) module 7.x-1.x before 7.x-1.7 for Drupal ...)
- TODO: check
+ NOT-FOR-US: Drupal module Chaos tool suite
CVE-2015-4374 (Cross-site scripting (XSS) vulnerability in the Webform module before ...)
NOT-FOR-US: Webform module for Drupal
CVE-2015-4373 (Cross-site scripting (XSS) vulnerability in the OG tabs module before ...)
- TODO: check
+ NOT-FOR-US: Drupal module OG tabs
CVE-2015-4372 (Cross-site scripting (XSS) vulnerability in the Image Title module ...)
- TODO: check
+ NOT-FOR-US: Drupal module Image Title
CVE-2015-4371 (Open redirect vulnerability in the Perfecto module before 7.x-1.2 for ...)
- TODO: check
+ NOT-FOR-US: Drupal module Perfecto
CVE-2015-4370 (Cross-site scripting (XSS) vulnerability in the Site Documentation ...)
- TODO: check
+ NOT-FOR-US: Drupal module Site Documentation
CVE-2015-4369 (Cross-site scripting (XSS) vulnerability in the Trick Question module ...)
- TODO: check
+ NOT-FOR-US: Drupal module Trick Question
CVE-2015-4368 (The Commerce Ogone module 7.x-1.x before 7.x-1.5 for Drupal allows ...)
- TODO: check
+ NOT-FOR-US: Drupal module Commerce Ogone
CVE-2015-4367 (Cross-site scripting (XSS) vulnerability in the Simple Subscription ...)
- TODO: check
+ NOT-FOR-US: Drupal module Simple Subscription
CVE-2015-4366 (Cross-site scripting (XSS) vulnerability in the Mover module 6.x-1.0 ...)
- TODO: check
+ NOT-FOR-US: Drupal module Mover
CVE-2015-4365 (Cross-site scripting (XSS) vulnerability in the Taxonomy Accordion ...)
- TODO: check
+ NOT-FOR-US: Drupal module Taxonomy Accordion
CVE-2015-4364 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Drupal module Campaign Monitor
CVE-2015-4363 (Open redirect vulnerability in the finder_form_goto function in the ...)
- TODO: check
+ NOT-FOR-US: Drupal module Finder
CVE-2015-4362 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Drupal module Tracking Code
CVE-2015-4361 (Cross-site request forgery (CSRF) vulnerability in the Registration ...)
- TODO: check
+ NOT-FOR-US: Drupal Module Registration codes
CVE-2015-4360 (Cross-site request forgery (CSRF) vulnerability in the Registration ...)
- TODO: check
+ NOT-FOR-US: Drupal Module Registration codes
CVE-2015-4359 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Drupal Module Registration codes
CVE-2015-4358 (Cross-site scripting (XSS) vulnerability in unspecified administration ...)
- TODO: check
+ NOT-FOR-US: Drupal module Ubercart Display Coupons
CVE-2015-4357 (Cross-site scripting (XSS) vulnerability in the Webform module before ...)
- TODO: check
+ NOT-FOR-US: Drupal module Webform
CVE-2015-4356 (Cross-site scripting (XSS) vulnerability in the view-based webform ...)
- TODO: check
+ NOT-FOR-US: Drupal module Webform
CVE-2015-4355 (Cross-site request forgery (CSRF) vulnerability in the Watchdog ...)
- TODO: check
+ NOT-FOR-US: Drupal module Watchdog Aggregator
CVE-2015-4354 (Cross-site scripting (XSS) vulnerability in the Ubercart Webform ...)
- TODO: check
+ NOT-FOR-US: Drupal module Ubercart Webform Integration
CVE-2015-4353 (Cross-site request forgery (CSRF) vulnerability in the Custom Sitemap ...)
- TODO: check
+ NOT-FOR-US: Drupal module Custom Sitemap
CVE-2015-4352 (Cross-site request forgery (CSRF) vulnerability in the Spider Video ...)
- TODO: check
+ NOT-FOR-US: Drupal module Spider Video Player
CVE-2015-4351 (The Spider Video Player module for Drupal allows remote authenticated ...)
- TODO: check
+ NOT-FOR-US: Drupal module Spider Video Player
CVE-2015-4350 (Multiple cross-site request forgery (CSRF) vulnerabilities in the ...)
- TODO: check
+ NOT-FOR-US: Drupal Module Spider Catalog
CVE-2015-4349 (Cross-site request forgery (CSRF) vulnerability in the Spider Contacts ...)
- TODO: check
+ NOT-FOR-US: Drupal Module Spider Catalog
CVE-2015-4348 (SQL injection vulnerability in the Spider Contacts module for Drupal ...)
- TODO: check
+ NOT-FOR-US: Drupal module Spider Contacts
CVE-2015-4347 (Cross-site scripting (XSS) vulnerability in the inLinks Integration ...)
- TODO: check
+ NOT-FOR-US: Drupal module inLinks Integration
CVE-2015-4346 (Cross-site scripting (XSS) vulnerability in the SMS Framework module ...)
- TODO: check
+ NOT-FOR-US: Drupal module SMS Framework
CVE-2015-4345 (The RESTWS Basic Auth submodule in the RESTful Web Services module ...)
- TODO: check
+ NOT-FOR-US: Drupal module RESTful Web Services
CVE-2015-4344 (The Services Basic Authentication module 7.x-1.x through 7.x-1.3 for ...)
- TODO: check
+ NOT-FOR-US: Drupal module Services Basic Authentication
CVE-2015-4343
RESERVED
CVE-2015-4342 (SQL injection vulnerability in Cacti before 0.8.8d allows remote ...)
More information about the Secure-testing-commits
mailing list