[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Wed Dec 26 08:10:33 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f3f5d288 by security tracker role at 2018-12-26T08:10:25Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,43 @@
+CVE-2018-20481 (XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef ...)
+	TODO: check
+CVE-2018-20480 (An issue was discovered in S-CMS 1.0. It allows SQL Injection via the ...)
+	TODO: check
+CVE-2018-20479 (An issue was discovered in S-CMS 1.0. It allows SQL Injection via the ...)
+	TODO: check
+CVE-2018-20478 (An issue was discovered in S-CMS 1.0. It allows reading certain files, ...)
+	TODO: check
+CVE-2018-20477 (An issue was discovered in S-CMS 3.0. It allows SQL Injection via the ...)
+	TODO: check
+CVE-2018-20476 (An issue was discovered in S-CMS 3.0. It allows XSS via the ...)
+	TODO: check
+CVE-2018-20475
+	RESERVED
+CVE-2018-20474
+	RESERVED
+CVE-2018-20473
+	RESERVED
+CVE-2018-20472
+	RESERVED
+CVE-2018-20471
+	RESERVED
+CVE-2018-20470
+	RESERVED
+CVE-2018-20469
+	RESERVED
+CVE-2018-20468
+	RESERVED
+CVE-2018-20467 (In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can ...)
+	TODO: check
+CVE-2018-20466
+	RESERVED
+CVE-2018-20465 (Craft CMS through 3.0.34 allows remote authenticated administrators to ...)
+	TODO: check
+CVE-2018-20464 (There is a reflected XSS vulnerability in the CMS Made Simple 2.2.8 ...)
+	TODO: check
+CVE-2018-20463 (An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. ...)
+	TODO: check
+CVE-2018-20462 (An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. A ...)
+	TODO: check
 CVE-2018-20461 (In radare2 prior to 3.1.1, core_anal_bytes in libr/core/cmd_anal.c ...)
 	- radare2 3.1.2+dfsg-1
 	NOTE: https://github.com/radare/radare2/commit/a1bc65c3db593530775823d6d7506a457ed95267



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3f5d288bb73680f7fc50aa141e9e0671f0803d5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3f5d288bb73680f7fc50aa141e9e0671f0803d5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181226/3d27e06d/attachment.html>

More information about the debian-security-tracker-commits mailing list