[Git][security-tracker-team/security-tracker][master] Process several CVEs as NFU

Salvatore Bonaccorso carnil at debian.org
Sun Sep 2 21:16:29 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b9d33afc by Salvatore Bonaccorso at 2018-09-02T20:16:02Z
Process several CVEs as NFU

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,21 +1,21 @@
 CVE-2018-16351
 	RESERVED
 CVE-2018-16350 (WUZHI CMS 4.1.0 has XSS via the index.php?m=core&f=set&v=basic ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-16349 (WUZHI CMS 4.1.0 has XSS via the index.php?m=link&f=index&v=add ...)
-	TODO: check
+	NOT-FOR-US: WUZHI CMS
 CVE-2018-16348 (SeaCMS V6.61 has XSS via the admin_video.php v_content parameter, ...)
-	TODO: check
+	NOT-FOR-US: SeaCMS
 CVE-2018-16347 (An issue was discovered in Gleez CMS v1.2.0. There is XSS via ...)
-	TODO: check
+	NOT-FOR-US: Gleez CMS
 CVE-2018-16346 (ChemCMS 1.0.6 has XSS via the "setting -> website information" field. ...)
-	TODO: check
+	NOT-FOR-US: ChemCMS
 CVE-2018-16345 (An issue was discovered in EasyCMS 1.5. There is a CSRF vulnerability ...)
-	TODO: check
+	NOT-FOR-US: EasyCMS
 CVE-2018-16344 (An issue was discovered in zzcms 8.3. It allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: zzcms
 CVE-2018-16343 (SeaCMS 6.61 allows remote attackers to execute arbitrary code because ...)
-	TODO: check
+	NOT-FOR-US: SeaCMS
 CVE-2018-16342 (ShowDoc v1.8.0 has XSS via a new page. ...)
 	TODO: check
 CVE-2018-16341
@@ -23,11 +23,11 @@ CVE-2018-16341
 CVE-2018-16340
 	RESERVED
 CVE-2018-16339 (An issue was discovered in EmpireCMS 7.0. There is a CSRF vulnerability ...)
-	TODO: check
+	NOT-FOR-US: EmpireCMS
 CVE-2018-16338 (An issue was discovered in AuraCMS 2.3. There is a CSRF vulnerability ...)
-	TODO: check
+	NOT-FOR-US: AuraCMS
 CVE-2018-16337 (An issue was discovered in Cscms V4.1.8. There is a CSRF vulnerability ...)
-	TODO: check
+	NOT-FOR-US: Cscms
 CVE-2018-16336 (Exiv2::Internal::PngChunk::parseTXTChunk in Exiv2 v0.26 allows remote ...)
 	- exiv2 <undetermined>
 	NOTE: https://github.com/Exiv2/exiv2/issues/400



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9d33afc02f3cf98e5957bc0760876f6f12cd36d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9d33afc02f3cf98e5957bc0760876f6f12cd36d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180902/3099678b/attachment.html>

More information about the debian-security-tracker-commits mailing list