[Git][security-tracker-team/security-tracker][master] NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
0ee33a3d by Moritz Muehlenhoff at 2018-08-27T09:12:10Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,7 +3,7 @@ CVE-2018-15901
 CVE-2018-15900
 	RESERVED
 CVE-2018-15899 (An issue was discovered in MiniCMS 1.10. There is a post.php?date= XSS ...)
-	TODO: check
+	NOT-FOR-US: MiniCMS
 CVE-2018-15898
 	RESERVED
 CVE-2018-15897
@@ -11,11 +11,11 @@ CVE-2018-15897
 CVE-2018-15896
 	RESERVED
 CVE-2018-15895 (An SSRF vulnerability was discovered in idreamsoft iCMS 7.0.11 because ...)
-	TODO: check
+	NOT-FOR-US: iCMS
 CVE-2018-15894 (A SQL injection was discovered in ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-15893 (A SQL injection was discovered in /coreframe/app/admin/copyfrom.php in ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-15892
 	RESERVED
 CVE-2018-15891
@@ -25,21 +25,21 @@ CVE-2018-15890
 CVE-2018-15889 (In podofo 0.9.6, the function PoDoFo::PdfParser::ReadObjects() in ...)
 	TODO: check
 CVE-2018-15888 (An issue was discovered in ASPCMS 2.5.6. When registering ordinary ...)
-	TODO: check
+	NOT-FOR-US: ASPCMS
 CVE-2017-18346
 	RESERVED
 CVE-2015-9264 (Lansweeper 4.x through 6.x before 6.0.0.48 allows attackers to execute ...)
-	TODO: check
+	NOT-FOR-US: Lansweeper
 CVE-2015-9263 (An issue was discovered in post2file.php in Up.Time Monitoring Station ...)
-	TODO: check
+	NOT-FOR-US: Up.Time
 CVE-2014-10074 (Umbraco before 7.2.0 has a remote PHP code execution vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Umbraco
 CVE-2018-15887
 	RESERVED
 CVE-2018-15886
 	RESERVED
 CVE-2018-15885 (Ovation FindMe 1.4-1083-1 is intended to support transmission of ...)
-	TODO: check
+	NOT-FOR-US: Ovation FindMe
 CVE-2018-15884
 	RESERVED
 CVE-2018-15883
@@ -55,7 +55,7 @@ CVE-2018-15879
 CVE-2018-15878
 	RESERVED
 CVE-2017-18345 (The Joomanager component through 2.0.0 for Joomla! has an arbitrary ...)
-	TODO: check
+	NOT-FOR-US: Joomla addon
 CVE-2018-XXXX [Multiple -dSAFER sandbox bypass vulnerabilities]
 	- ghostscript <unfixed> (bug #907332)
 	NOTE: https://www.kb.cert.org/vuls/id/332928
@@ -198,7 +198,7 @@ CVE-2018-15835
 CVE-2018-15834
 	RESERVED
 CVE-2018-15833 (In Vanilla before 2.6.1, the polling functionality allows Insecure ...)
-	TODO: check
+	NOT-FOR-US: Vanilla
 CVE-2018-15832
 	RESERVED
 CVE-2018-15831
@@ -687,7 +687,7 @@ CVE-2018-15604
 CVE-2018-15603 (An issue was discovered in Victor CMS through 2018-05-10. There is XSS ...)
 	NOT-FOR-US: Victor CMS
 CVE-2018-15602 (Zyxel VMG3312 B10B devices are affected by a persistent XSS ...)
-	TODO: check
+	NOT-FOR-US: Zyxel
 CVE-2018-15601 (apps/filemanager/handlers/upload/drop.php in Elefant CMS 2.0.3 performs ...)
 	NOT-FOR-US: Elefant CMS
 CVE-2018-15600



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0ee33a3dedad7ce022b63ce4fa54a248033a60f3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0ee33a3dedad7ce022b63ce4fa54a248033a60f3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180827/8a0e024d/attachment.html>