[Secure-testing-commits] r54933 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 21 09:15:55 UTC 2017
Author: carnil
Date: 2017-08-21 09:15:55 +0000 (Mon, 21 Aug 2017)
New Revision: 54933
Modified:
data/CVE/list
Log:
Add two new dokuwiki issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-08-21 09:14:06 UTC (rev 54932)
+++ data/CVE/list 2017-08-21 09:15:55 UTC (rev 54933)
@@ -6,9 +6,11 @@
CVE-2017-12981 (NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via ...)
NOT-FOR-US: NexusPHP
CVE-2017-12980 (DokuWiki through 2017-02-19c has stored XSS when rendering a malicious ...)
- TODO: check
+ - dokuwiki <unfixed>
+ NOTE: https://github.com/splitbrain/dokuwiki/issues/2081
CVE-2017-12979 (DokuWiki through 2017-02-19c has stored XSS when rendering a malicious ...)
- TODO: check
+ - dokuwiki <unfixed>
+ NOTE: https://github.com/splitbrain/dokuwiki/issues/2080
CVE-2017-12978 (lib/html.php in Cacti before 1.1.18 has XSS via the title field of an ...)
- cacti 1.1.18+ds1-1
NOTE: https://github.com/Cacti/cacti/commit/9c610a7a4e29595dcaf7d7082134e4b89619ea24
More information about the Secure-testing-commits
mailing list