[Secure-testing-commits] r58746 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 20 22:04:44 UTC 2017
Author: carnil
Date: 2017-12-20 22:04:43 +0000 (Wed, 20 Dec 2017)
New Revision: 58746
Modified:
data/CVE/list
Log:
Process NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-20 21:54:23 UTC (rev 58745)
+++ data/CVE/list 2017-12-20 22:04:43 UTC (rev 58746)
@@ -79,31 +79,31 @@
CVE-2018-3560
RESERVED
CVE-2017-17804 (In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows ...)
- TODO: check
+ NOT-FOR-US: IKARUS anti.virus
CVE-2017-17803 (In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) ...)
- TODO: check
+ NOT-FOR-US: TG Soft Vir.IT eXplorer Lite
CVE-2017-17802 (In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) ...)
- TODO: check
+ NOT-FOR-US: TG Soft Vir.IT eXplorer Lite
CVE-2017-17801 (In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) ...)
- TODO: check
+ NOT-FOR-US: TG Soft Vir.IT eXplorer Lite
CVE-2017-17800 (In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) ...)
- TODO: check
+ NOT-FOR-US: TG Soft Vir.IT eXplorer Lite
CVE-2017-17799 (In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) ...)
- TODO: check
+ NOT-FOR-US: TG Soft Vir.IT eXplorer Lite
CVE-2017-17798 (In TG Soft Vir.IT eXplorer Lite 8.5.42, the driver file (VIRAGTLT.SYS) ...)
- TODO: check
+ NOT-FOR-US: TG Soft Vir.IT eXplorer Lite
CVE-2017-17797 (In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows ...)
- TODO: check
+ NOT-FOR-US: IKARUS anti.virus
CVE-2017-17796 (In TG Soft Vir.IT eXplorer Lite 8.5.65, the driver file (VIRAGTLT.SYS) ...)
- TODO: check
+ NOT-FOR-US: TG Soft Vir.IT eXplorer Lite
CVE-2017-17795 (In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows ...)
- TODO: check
+ NOT-FOR-US: IKARUS anti.virus
CVE-2017-17794 (validate_form_preferences in admin/preferences.php in BlogoText through ...)
- TODO: check
+ NOT-FOR-US: BlogoText
CVE-2017-17793 (Information Disclosure vulnerability in creer_fichier_zip in ...)
- TODO: check
+ NOT-FOR-US: BlogoText
CVE-2017-17792 (Cross site scripting (XSS) vulnerability in the markup_clean_href ...)
- TODO: check
+ NOT-FOR-US: BlogoText
CVE-2017-17791
RESERVED
CVE-2017-17790 (The lazy_initialize function in lib/resolv.rb in Ruby through 2.4.3 ...)
@@ -222,7 +222,7 @@
CVE-2017-17753 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
NOT-FOR-US: esb-csv-import-export plugin for WordPress
CVE-2017-17752 (Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body ...)
- TODO: check
+ NOT-FOR-US: Ability Mail Server
CVE-2017-17751
RESERVED
CVE-2017-17750
@@ -232,11 +232,11 @@
CVE-2017-17748
RESERVED
CVE-2017-17747 (Weak access controls in the Device Logout functionality on the TP-Link ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2017-17746 (Weak access control methods on the TP-Link TL-SG108E 1.0.0 allow any ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2017-17745 (Cross-site scripting (XSS) vulnerability in system_name_set.cgi in ...)
- TODO: check
+ NOT-FOR-US: TP-Link
CVE-2017-17744 (A cross-site scripting (XSS) vulnerability in the custom-map plugin ...)
NOT-FOR-US: custom-map plugin for WordPress
CVE-2017-17743
@@ -2747,13 +2747,13 @@
CVE-2017-17697 (The Ping() function in ui/api/target.go in Harbor through 1.3.0-rc4 has ...)
TODO: check
CVE-2017-17696 (Techno - Portfolio Management Panel through 2017-11-16 allows full path ...)
- TODO: check
+ NOT-FOR-US: Techno - Portfolio Management Panel
CVE-2017-17695 (Techno - Portfolio Management Panel through 2017-11-16 allows SQL ...)
- TODO: check
+ NOT-FOR-US: Techno - Portfolio Management Panel
CVE-2017-17694 (Techno - Portfolio Management Panel through 2017-11-16 allows XSS via ...)
- TODO: check
+ NOT-FOR-US: Techno - Portfolio Management Panel
CVE-2017-17693 (Techno - Portfolio Management Panel through 2017-11-16 does not check ...)
- TODO: check
+ NOT-FOR-US: Techno - Portfolio Management Panel
CVE-2017-17692
RESERVED
CVE-2017-17691
@@ -4810,9 +4810,9 @@
CVE-2017-17673
RESERVED
CVE-2017-17672 (In vBulletin through 5.3.x, there is an unauthenticated deserialization ...)
- TODO: check
+ NOT-FOR-US: vBulletin
CVE-2017-17671 (vBulletin through 5.3.x on Windows allows remote PHP code execution ...)
- TODO: check
+ NOT-FOR-US: vBulletin
CVE-2017-17670 (In VideoLAN VLC media player through 2.2.8, there is a type conversion ...)
- vlc 3.0.0~rc2-1
[wheezy] - vlc <end-of-life> (Not supported wheezy LTS)
@@ -4861,19 +4861,19 @@
CVE-2017-17652
RESERVED
CVE-2017-17651 (Paid To Read Script 2.0.5 has SQL Injection via the admin/userview.php ...)
- TODO: check
+ NOT-FOR-US: Paid To Read Script
CVE-2017-17650
RESERVED
CVE-2017-17649 (Readymade Video Sharing Script 3.2 has HTML Injection via the ...)
- TODO: check
+ NOT-FOR-US: Readymade Video Sharing Script
CVE-2017-17648 (Entrepreneur Dating Script 2.0.1 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Entrepreneur Dating Script
CVE-2017-17647
RESERVED
CVE-2017-17646
RESERVED
CVE-2017-17645 (Bus Booking Script 1.0 has SQL Injection via the txtname parameter to ...)
- TODO: check
+ NOT-FOR-US: Bus Booking Script
CVE-2017-17644
RESERVED
CVE-2017-17643 (FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to ...)
@@ -4881,21 +4881,21 @@
CVE-2017-17642 (Basic Job Site Script 2.0.5 has SQL Injection via the keyword parameter ...)
TODO: check
CVE-2017-17641 (Resume Clone Script 2.0.5 has SQL Injection via the preview.php id ...)
- TODO: check
+ NOT-FOR-US: Resume Clone Script
CVE-2017-17640 (Advanced World Database 2.0.5 has SQL Injection via the city.php ...)
TODO: check
CVE-2017-17639 (Muslim Matrimonial Script 3.02 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Muslim Matrimonial Script
CVE-2017-17638 (Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php ...)
- TODO: check
+ NOT-FOR-US: Groupon Clone Script
CVE-2017-17637 (Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val ...)
- TODO: check
+ NOT-FOR-US: Car Rental Script
CVE-2017-17636 (MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid ...)
TODO: check
CVE-2017-17635 (MLM Forex Market Plan Script 2.0.4 has SQL Injection via the ...)
TODO: check
CVE-2017-17634 (Single Theater Booking Script 3.2.1 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Single Theater Booking Script
CVE-2017-17633 (Multiplex Movie Theater Booking Script 3.1.5 has SQL Injection via the ...)
TODO: check
CVE-2017-17632 (Responsive Events And Movie Ticket Booking Script 3.2.1 has SQL ...)
More information about the Secure-testing-commits
mailing list