[Secure-testing-commits] r35441 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Jul 13 04:44:27 UTC 2015
Author: carnil
Date: 2015-07-13 04:44:26 +0000 (Mon, 13 Jul 2015)
New Revision: 35441
Modified:
data/CVE/list
Log:
Add new moodle issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-07-12 20:51:13 UTC (rev 35440)
+++ data/CVE/list 2015-07-13 04:44:26 UTC (rev 35441)
@@ -5450,14 +5450,22 @@
RESERVED
CVE-2015-3276
RESERVED
-CVE-2015-3275
+CVE-2015-3275 [Javascript injection in SCORM module]
RESERVED
-CVE-2015-3274
+ - moodle <unfixed>
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50614
+CVE-2015-3274 [Possible XSS through custom text profile fields in Web Services]
RESERVED
-CVE-2015-3273
+ - moodle <unfixed>
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50130
+CVE-2015-3273 [Capability 'mod/forum:canposttomygroups' is not respected when using 'Post a copy to all groups' in forum]
RESERVED
-CVE-2015-3272
+ - moodle <not-affected> (Affects only 2.9)
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50220
+CVE-2015-3272 [Possible phishing when redirecting to external site using referer header]
RESERVED
+ - moodle <unfixed>
+ NOTE: http://git.moodle.org/gw?p=moodle.git&a=search&h=HEAD&st=commit&s=MDL-50688
CVE-2015-3271
RESERVED
CVE-2015-3270
More information about the Secure-testing-commits
mailing list