[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Wed Jun 6 09:36:42 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4188b846 by Salvatore Bonaccorso at 2018-06-06T10:36:17+02:00
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -11,7 +11,7 @@ CVE-2018-11810
 CVE-2018-11809
 	RESERVED
 CVE-2018-11808 (Incorrect Access Control in CustomFieldsFeedServlet in Zoho ...)
-	TODO: check
+	NOT-FOR-US: Zoho ManageEngine Applications Manager
 CVE-2018-11807
 	RESERVED
 CVE-2018-11806
@@ -229,7 +229,7 @@ CVE-2018-11724
 CVE-2018-11723
 	RESERVED
 CVE-2018-11722 (WUZHI CMS 4.1.0 has a SQL Injection in api/uc.php via the 'code' ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-11721
 	RESERVED
 CVE-2018-11720
@@ -387,7 +387,7 @@ CVE-2018-11680 (An issue was discovered in CmsEasy 6.1_20180508. There is a CSRF
 CVE-2018-11679 (An issue was discovered in CmsEasy 6.1_20180508. There is a CSRF ...)
 	NOT-FOR-US: CmsEasy
 CVE-2018-11678 (plugins/box/users/users.plugin.php in Monstra CMS 3.0.4 allows Login ...)
-	TODO: check
+	NOT-FOR-US: Monstra CMS
 CVE-2018-11677
 	RESERVED
 CVE-2018-11676
@@ -595,7 +595,7 @@ CVE-2018-11588
 CVE-2018-11587
 	RESERVED
 CVE-2018-11586 (XML external entity (XXE) vulnerability in api/rest/status in ...)
-	TODO: check
+	NOT-FOR-US: SearchBlox
 CVE-2018-11585
 	RESERVED
 CVE-2018-11584
@@ -663,9 +663,9 @@ CVE-2018-11556 (tificc in Little CMS 2.9 has an out-of-bounds write in the ...)
 CVE-2018-11555 (tificc in Little CMS 2.9 has an out-of-bounds write in the ...)
 	NOT-FOR-US: Little CMS
 CVE-2018-11554 (The forgotten-password feature in ...)
-	TODO: check
+	NOT-FOR-US: YzmCMS
 CVE-2018-11553 (SGIN.CN xiangyun platform V9.4.10 has XSS via the login_url parameter ...)
-	TODO: check
+	NOT-FOR-US: SGIN.CN xiangyun platform
 CVE-2018-11552 (There is a reflected XSS vulnerability in AXON PBX 2.02 via the ...)
 	NOT-FOR-US: AXON PBX
 CVE-2018-11551 (AXON PBX 2.02 contains a DLL hijacking vulnerability that could allow ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4188b84656edf2f6ad5406a515724bc57f043ec3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4188b84656edf2f6ad5406a515724bc57f043ec3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180606/26e1d6f6/attachment.html>

More information about the debian-security-tracker-commits mailing list