[Secure-testing-commits] r58747 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 20 22:22:18 UTC 2017
Author: carnil
Date: 2017-12-20 22:22:18 +0000 (Wed, 20 Dec 2017)
New Revision: 58747
Modified:
data/CVE/list
Log:
Process more NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-20 22:04:43 UTC (rev 58746)
+++ data/CVE/list 2017-12-20 22:22:18 UTC (rev 58747)
@@ -2745,7 +2745,7 @@
CVE-2017-17698 (Zoho ManageEngine Password Manager Pro 9 before 9.4 (9400) has ...)
NOT-FOR-US: Zoho ManageEngine Password Manager Pro
CVE-2017-17697 (The Ping() function in ui/api/target.go in Harbor through 1.3.0-rc4 has ...)
- TODO: check
+ NOT-FOR-US: Harbor
CVE-2017-17696 (Techno - Portfolio Management Panel through 2017-11-16 allows full path ...)
NOT-FOR-US: Techno - Portfolio Management Panel
CVE-2017-17695 (Techno - Portfolio Management Panel through 2017-11-16 allows SQL ...)
@@ -4771,9 +4771,9 @@
CVE-2018-1361
RESERVED
CVE-2017-17684 (Panda Global Protection 17.0.1 allows a system crash via a 0xb3702c04 ...)
- TODO: check
+ NOT-FOR-US: Panda Global Protection
CVE-2017-17683 (Panda Global Protection 17.0.1 allows a system crash via a 0xb3702c44 ...)
- TODO: check
+ NOT-FOR-US: Panda Global Protection
CVE-2017-17682 (In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in ...)
- imagemagick <unfixed> (low)
[stretch] - imagemagick <no-dsa> (Minor issue)
@@ -4829,7 +4829,7 @@
CVE-2017-17666
RESERVED
CVE-2017-17665 (In Octopus Deploy before 4.1.3, the machine update process doesn't ...)
- TODO: check
+ NOT-FOR-US: Octopus Deploy
CVE-2017-17664 (A Remote Crash issue was discovered in Asterisk Open Source 13.x before ...)
- asterisk <unfixed> (bug #884345)
[jessie] - asterisk <not-affected> (Vulnerable code introduced later)
@@ -4877,13 +4877,13 @@
CVE-2017-17644
RESERVED
CVE-2017-17643 (FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to ...)
- TODO: check
+ NOT-FOR-US: FS Lynda Clone
CVE-2017-17642 (Basic Job Site Script 2.0.5 has SQL Injection via the keyword parameter ...)
- TODO: check
+ NOT-FOR-US: Basic Job Site Script
CVE-2017-17641 (Resume Clone Script 2.0.5 has SQL Injection via the preview.php id ...)
NOT-FOR-US: Resume Clone Script
CVE-2017-17640 (Advanced World Database 2.0.5 has SQL Injection via the city.php ...)
- TODO: check
+ NOT-FOR-US: Advanced World Database
CVE-2017-17639 (Muslim Matrimonial Script 3.02 has SQL Injection via the ...)
NOT-FOR-US: Muslim Matrimonial Script
CVE-2017-17638 (Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php ...)
@@ -4891,57 +4891,57 @@
CVE-2017-17637 (Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val ...)
NOT-FOR-US: Car Rental Script
CVE-2017-17636 (MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid ...)
- TODO: check
+ NOT-FOR-US: MLM Forced Matrix
CVE-2017-17635 (MLM Forex Market Plan Script 2.0.4 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: MLM Forex Market Plan Script
CVE-2017-17634 (Single Theater Booking Script 3.2.1 has SQL Injection via the ...)
NOT-FOR-US: Single Theater Booking Script
CVE-2017-17633 (Multiplex Movie Theater Booking Script 3.1.5 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Multiplex Movie Theater Booking Script
CVE-2017-17632 (Responsive Events And Movie Ticket Booking Script 3.2.1 has SQL ...)
- TODO: check
+ NOT-FOR-US: Responsive Events And Movie Ticket Booking Script
CVE-2017-17631 (Multireligion Responsive Matrimonial 4.7.2 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Multireligion Responsive Matrimonial
CVE-2017-17630 (Yoga Class Script 1.0 has SQL Injection via the /list city parameter. ...)
- TODO: check
+ NOT-FOR-US: Yoga Class Script
CVE-2017-17629 (Secure E-commerce Script 2.0.1 has SQL Injection via the category.php ...)
- TODO: check
+ NOT-FOR-US: Secure E-commerce Script
CVE-2017-17628 (Responsive Realestate Script 3.2 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Responsive Realestate Script
CVE-2017-17627 (Readymade Video Sharing Script 3.2 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Readymade Video Sharing Script
CVE-2017-17626 (Readymade PHP Classified Script 3.3 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Readymade PHP Classified Script
CVE-2017-17625 (Professional Service Script 1.0 has SQL Injection via the service-list ...)
- TODO: check
+ NOT-FOR-US: Professional Service Script
CVE-2017-17624 (PHP Multivendor Ecommerce 1.0 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: PHP Multivendor Ecommerce
CVE-2017-17623 (Opensource Classified Ads Script 3.2 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Opensource Classified Ads Script
CVE-2017-17622 (Online Exam Test Application Script 1.6 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Online Exam Test Application Script
CVE-2017-17621 (Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the ...)
- TODO: check
+ NOT-FOR-US: Multivendor Penny Auction Clone Script
CVE-2017-17620 (Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city ...)
- TODO: check
+ NOT-FOR-US: Lawyer Search Script
CVE-2017-17619 (Laundry Booking Script 1.0 has SQL Injection via the /list city ...)
- TODO: check
+ NOT-FOR-US: Laundry Booking Script
CVE-2017-17618 (Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php ...)
- TODO: check
+ NOT-FOR-US: Kickstarter Clone Script
CVE-2017-17617 (Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php ...)
- TODO: check
+ NOT-FOR-US: Foodspotting Clone Script
CVE-2017-17616 (Event Search Script 1.0 has SQL Injection via the /event-list city ...)
- TODO: check
+ NOT-FOR-US: Event Search Script
CVE-2017-17615 (Facebook Clone Script 1.0 has SQL Injection via the friend-profile.php ...)
- TODO: check
+ NOT-FOR-US: Facebook Clone Script
CVE-2017-17614 (Food Order Script 1.0 has SQL Injection via the /list city parameter. ...)
- TODO: check
+ NOT-FOR-US: Food Order Script
CVE-2017-17613 (Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php ...)
- TODO: check
+ NOT-FOR-US: Freelance Website Script
CVE-2017-17612 (Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or ...)
- TODO: check
+ NOT-FOR-US: Hot Scripts Clone
CVE-2017-17611 (Doctor Search Script 1.0 has SQL Injection via the /list city ...)
- TODO: check
+ NOT-FOR-US: Doctor Search Script
CVE-2017-17610 (E-commerce MLM Software 1.0 has SQL Injection via the ...)
TODO: check
CVE-2017-17609 (Chartered Accountant Booking Script 1.0 has SQL Injection via the ...)
More information about the Secure-testing-commits
mailing list