[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sun Oct 28 08:10:26 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f3770a04 by security tracker role at 2018-10-28T08:10:17Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,4 +1,100 @@
-CVE-2018-18710 [cdrom: information leak]
+CVE-2018-18750
+	RESERVED
+CVE-2018-18749 (data-tools through 2017-07-26 has an Integer Overflow leading to an ...)
+	TODO: check
+CVE-2018-18748 (Sandboxie 5.26 allows a Sandbox Escape via an "import os" statement, ...)
+	TODO: check
+CVE-2018-18747
+	RESERVED
+CVE-2018-18746
+	RESERVED
+CVE-2018-18745 (An XSS issue was discovered in SEMCMS 3.4 via ...)
+	TODO: check
+CVE-2018-18744 (An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the ...)
+	TODO: check
+CVE-2018-18743 (An XSS issue was discovered in SEMCMS 3.4 via the second text field to ...)
+	TODO: check
+CVE-2018-18742 (A CSRF issue was discovered in SEMCMS 3.4 via the ...)
+	TODO: check
+CVE-2018-18741 (An XSS issue was discovered in SEMCMS 3.4 via ...)
+	TODO: check
+CVE-2018-18740 (An XSS issue was discovered in SEMCMS 3.4 via the first input field to ...)
+	TODO: check
+CVE-2018-18739 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
+	TODO: check
+CVE-2018-18738 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
+	TODO: check
+CVE-2018-18737 (An XXE issue was discovered in Douchat 4.0.4 because Data\notify.php ...)
+	TODO: check
+CVE-2018-18736 (An XSS issue was discovered in catfish blog 2.0.33, related to "write ...)
+	TODO: check
+CVE-2018-18735 (A CSRF issue was discovered in admin/Index/tiquan in catfish blog ...)
+	TODO: check
+CVE-2018-18734 (A CSRF issue was discovered in admin/Index/addmanageuser.html in ...)
+	TODO: check
+CVE-2018-18733 (An XSS issue was discovered in Catfish CMS 4.8.30, related to "write ...)
+	TODO: check
+CVE-2018-18732 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18731 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18730 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18729 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18728 (An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN, AC15 ...)
+	TODO: check
+CVE-2018-18727 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18726 (An XSS issue was discovered in admin/sitelink/editsitelink?id=16 in ...)
+	TODO: check
+CVE-2018-18725 (An XSS issue was discovered in admin/banner/editbanner?id=20 in YUNUCMS ...)
+	TODO: check
+CVE-2018-18724 (An XSS issue was discovered in ...)
+	TODO: check
+CVE-2018-18723 (An XSS issue was discovered in index.php/admin/area/editarea/id/110000 ...)
+	TODO: check
+CVE-2018-18722 (An XSS issue was discovered in admin/content/editcontent?id=29&gopage=1 ...)
+	TODO: check
+CVE-2018-18721 (An XSS issue was discovered in admin/link/editlink?id=5 in YUNUCMS ...)
+	TODO: check
+CVE-2018-18720 (An XSS issue was discovered in index.php/admin/system/basic in YUNUCMS ...)
+	TODO: check
+CVE-2018-18719
+	RESERVED
+CVE-2018-18718 (An issue was discovered in gThumb through 3.6.2. There is a double-free ...)
+	TODO: check
+CVE-2018-18717 (An issue was discovered in Eleanor CMS through 2015-03-19. XSS exists ...)
+	TODO: check
+CVE-2018-18716
+	RESERVED
+CVE-2018-18715
+	RESERVED
+CVE-2018-18714
+	RESERVED
+CVE-2018-18713 (The function down_sql_action() in /admin/model/database.class.php in ...)
+	TODO: check
+CVE-2018-18712 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF ...)
+	TODO: check
+CVE-2018-18711 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF ...)
+	TODO: check
+CVE-2018-18709 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18708 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18707 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2018-18706 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+	TODO: check
+CVE-2016-10734 (ProjectSend (formerly cFTP) r582 allows Insecure Direct Object ...)
+	TODO: check
+CVE-2016-10733 (ProjectSend (formerly cFTP) r582 allows directory traversal via ...)
+	TODO: check
+CVE-2016-10732 (ProjectSend (formerly cFTP) r582 allows authentication bypass via a ...)
+	TODO: check
+CVE-2016-10731 (ProjectSend (formerly cFTP) r582 allows SQL injection via ...)
+	TODO: check
+CVE-2018-18710 (An issue was discovered in the Linux kernel through 4.19. An ...)
 	- linux <unfixed>
 	NOTE: https://git.kernel.org/linus/e4f3aa2e1e67bb48dfbaaf1cad59013d5a5bc276
 CVE-2018-18705 (PhpTpoint hospital management system suffers from multiple SQL ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3770a043292df3555e07d250d6cbe47609b3785

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3770a043292df3555e07d250d6cbe47609b3785
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181028/bb49e684/attachment.html>

More information about the debian-security-tracker-commits mailing list