[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff jmm at debian.org
Sat Aug 11 11:18:08 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a18bf6e5 by Moritz Muehlenhoff at 2018-08-11T10:17:25Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -238,19 +238,19 @@ CVE-2018-15192 (An SSRF vulnerability in webhooks in Gitea through 1.5.0-rc2 and
 	- gitea <unfixed>
 	NOTE: https://github.com/go-gitea/gitea/issues/4624
 CVE-2018-15191 (PHP Scripts Mall hotel-booking-script 2.0.4 allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15190 (PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15189 (PHP Scripts Mall advanced-real-estate-script has XSS via the Name ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15188 (PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15187 (PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15186 (PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 has CSRF ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15185 (PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 allows ...)
-	TODO: check
+	NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15184 (PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has ...)
 	NOT-FOR-US: PHP Scripts Mall Naukri / Shine / Jobsite Clone Script
 CVE-2018-15183 (PHP Scripts Mall Myperfectresume / JobHero / Resume Clone Script 2.0.6 ...)
@@ -369,7 +369,8 @@ CVE-2018-15131
 CVE-2018-15130 (ThinkSAAS through 2018-07-25 has XSS via the ...)
 	NOT-FOR-US: ThinkSAAS
 CVE-2013-7464 (In csrf-magic before 1.0.4, if $GLOBALS['csrf']['secret'] is not ...)
-	TODO: check
+	- zoneminder <undetermined>
+	- cacti <undetermined>
 CVE-2018-15129 (ThinkSAAS through 2018-07-25 has XSS via the ...)
 	NOT-FOR-US: ThinkSAAS
 CVE-2018-15128



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a18bf6e5b5c556fd61f3c561941792c5a5a419f3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/a18bf6e5b5c556fd61f3c561941792c5a5a419f3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180811/7afd02ac/attachment.html>

More information about the debian-security-tracker-commits mailing list