[Git][security-tracker-team/security-tracker][master] CVE-2017-17827/piwigo
Henri Salo
gitlab at salsa.debian.org
Fri Jul 6 22:45:13 BST 2018
Henri Salo pushed to branch master at Debian Security Tracker / security-tracker
Commits:
97a0e87e by Henri Salo at 2018-07-07T00:44:54+03:00
CVE-2017-17827/piwigo
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -26802,6 +26802,8 @@ CVE-2017-17828 (Bus Booking Script has XSS via the results.php datepicker parame
NOT-FOR-US: Bus Booking Script
CVE-2017-17827 (Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via ...)
- piwigo <removed>
+ NOTE: https://github.com/Piwigo/Piwigo/issues/822
+ NOTE: https://github.com/Piwigo/Piwigo/commit/c3b4c6f7f0ddeaea492080fb8211d7b4cfedaf6f
CVE-2017-17826 (The Configuration component of Piwigo 2.9.2 is vulnerable to Persistent ...)
- piwigo <removed>
CVE-2017-17825 (The Batch Manager component of Piwigo 2.9.2 is vulnerable to Persistent ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/97a0e87ef814aa38e10ba5706fe3f2b193f66708
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/97a0e87ef814aa38e10ba5706fe3f2b193f66708
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180706/83a75897/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list