[Secure-testing-commits] r57022 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Oct 27 15:24:49 UTC 2017
Author: carnil
Date: 2017-10-27 15:24:49 +0000 (Fri, 27 Oct 2017)
New Revision: 57022
Modified:
data/CVE/list
Log:
Add commit reference for spip issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-27 14:59:58 UTC (rev 57021)
+++ data/CVE/list 2017-10-27 15:24:49 UTC (rev 57022)
@@ -396,7 +396,7 @@
NOT-FOR-US: IrfanView
CVE-2017-15736 (Cross-site scripting (XSS) vulnerability (stored) in SPIP before 3.1.7 ...)
- spip <unfixed>
- TODO: check
+ NOTE: https://core.spip.net/projects/spip/repository/revisions/23701
CVE-2017-15735 (In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) ...)
NOT-FOR-US: phpMyFAQ
CVE-2017-15734 (In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in ...)
More information about the Secure-testing-commits
mailing list