[Secure-testing-commits] r57547 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 11 09:15:34 UTC 2017
Author: carnil
Date: 2017-11-11 09:15:34 +0000 (Sat, 11 Nov 2017)
New Revision: 57547
Modified:
data/CVE/list
Log:
Process NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-11 09:10:16 UTC (rev 57546)
+++ data/CVE/list 2017-11-11 09:15:34 UTC (rev 57547)
@@ -9,15 +9,15 @@
CVE-2017-16786
RESERVED
CVE-2017-16784 (In CMS Made Simple 2.2.2, there is Reflected XSS via the ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2017-16783 (In CMS Made Simple 2.1.6, there is Server-Side Template Injection via ...)
- TODO: check
+ NOT-FOR-US: CMS Made Simple
CVE-2017-16782 (In Home Assistant before 0.57, it is possible to inject JavaScript code ...)
TODO: check
CVE-2017-16781 (The installer in MyBB before 1.8.13 has XSS. ...)
- TODO: check
+ NOT-FOR-US: MyBB
CVE-2017-16780 (The installer in MyBB before 1.8.13 allows remote attackers to execute ...)
- TODO: check
+ NOT-FOR-US: MyBB
CVE-2017-16785 (Cacti 1.1.27 has reflected XSS via the PATH_INFO to host.php. ...)
- cacti <unfixed>
NOTE: https://github.com/Cacti/cacti/issues/1071
@@ -615,7 +615,7 @@
CVE-2017-16521 (In Inedo BuildMaster before 5.8.2, XslTransform was used where ...)
NOT-FOR-US: Inedo BuildMaster
CVE-2017-16520 (Inedo BuildMaster before 5.8.2 does not properly restrict creation of ...)
- TODO: check
+ NOT-FOR-US: Inedo BuildMaster
CVE-2017-16519
RESERVED
CVE-2017-16518
More information about the Secure-testing-commits
mailing list