[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Sun Oct 28 09:17:29 GMT 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
678ff378 by Salvatore Bonaccorso at 2018-10-28T09:17:04Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,63 +9,63 @@ CVE-2018-18747
 CVE-2018-18746
 	RESERVED
 CVE-2018-18745 (An XSS issue was discovered in SEMCMS 3.4 via ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18744 (An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18743 (An XSS issue was discovered in SEMCMS 3.4 via the second text field to ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18742 (A CSRF issue was discovered in SEMCMS 3.4 via the ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18741 (An XSS issue was discovered in SEMCMS 3.4 via ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18740 (An XSS issue was discovered in SEMCMS 3.4 via the first input field to ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18739 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18738 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
-	TODO: check
+	NOT-FOR-US: SEMCMS
 CVE-2018-18737 (An XXE issue was discovered in Douchat 4.0.4 because Data\notify.php ...)
-	TODO: check
+	NOT-FOR-US: Douchat
 CVE-2018-18736 (An XSS issue was discovered in catfish blog 2.0.33, related to "write ...)
-	TODO: check
+	NOT-FOR-US: catfish blog (different from src:catfish)
 CVE-2018-18735 (A CSRF issue was discovered in admin/Index/tiquan in catfish blog ...)
-	TODO: check
+	NOT-FOR-US: catfish blog (different from src:catfish)
 CVE-2018-18734 (A CSRF issue was discovered in admin/Index/addmanageuser.html in ...)
-	TODO: check
+	NOT-FOR-US: Catfish CMS
 CVE-2018-18733 (An XSS issue was discovered in Catfish CMS 4.8.30, related to "write ...)
-	TODO: check
+	NOT-FOR-US: Catfish CMS
 CVE-2018-18732 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18731 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18730 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18729 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18728 (An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN, AC15 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18727 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18726 (An XSS issue was discovered in admin/sitelink/editsitelink?id=16 in ...)
-	TODO: check
+	NOT-FOR-US: YUNUCMS
 CVE-2018-18725 (An XSS issue was discovered in admin/banner/editbanner?id=20 in YUNUCMS ...)
-	TODO: check
+	NOT-FOR-US: YUNUCMS
 CVE-2018-18724 (An XSS issue was discovered in ...)
-	TODO: check
+	NOT-FOR-US: YUNUCMS
 CVE-2018-18723 (An XSS issue was discovered in index.php/admin/area/editarea/id/110000 ...)
-	TODO: check
+	NOT-FOR-US: YUNUCMS
 CVE-2018-18722 (An XSS issue was discovered in admin/content/editcontent?id=29&gopage=1 ...)
-	TODO: check
+	NOT-FOR-US: YUNUCMS
 CVE-2018-18721 (An XSS issue was discovered in admin/link/editlink?id=5 in YUNUCMS ...)
-	TODO: check
+	NOT-FOR-US: YUNUCMS
 CVE-2018-18720 (An XSS issue was discovered in index.php/admin/system/basic in YUNUCMS ...)
-	TODO: check
+	NOT-FOR-US: YUNUCMS
 CVE-2018-18719
 	RESERVED
 CVE-2018-18718 (An issue was discovered in gThumb through 3.6.2. There is a double-free ...)
 	TODO: check
 CVE-2018-18717 (An issue was discovered in Eleanor CMS through 2015-03-19. XSS exists ...)
-	TODO: check
+	NOT-FOR-US: Eleanor CMS
 CVE-2018-18716
 	RESERVED
 CVE-2018-18715
@@ -73,19 +73,19 @@ CVE-2018-18715
 CVE-2018-18714
 	RESERVED
 CVE-2018-18713 (The function down_sql_action() in /admin/model/database.class.php in ...)
-	TODO: check
+	NOT-FOR-US: PHPYun
 CVE-2018-18712 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-18711 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-18709 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18708 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18707 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2018-18706 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
-	TODO: check
+	NOT-FOR-US: Tenda devices
 CVE-2016-10734 (ProjectSend (formerly cFTP) r582 allows Insecure Direct Object ...)
 	TODO: check
 CVE-2016-10733 (ProjectSend (formerly cFTP) r582 allows directory traversal via ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/678ff378979cbf9390ff903ff2f1b85753e19468

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/678ff378979cbf9390ff903ff2f1b85753e19468
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181028/c658a4a4/attachment.html>

More information about the debian-security-tracker-commits mailing list