[Git][security-tracker-team/security-tracker][master] Process NFUs

Salvatore Bonaccorso carnil at debian.org
Tue Aug 13 21:07:29 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f0390123 by Salvatore Bonaccorso at 2019-08-13T20:06:54Z
Process NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -9,7 +9,7 @@ CVE-2019-14989
 CVE-2019-14988
 	RESERVED
 CVE-2019-14987 (Adive Framework through 2.0.7 is affected by XSS in the Create New Tab ...)
-	TODO: check
+	NOT-FOR-US: Adive Framework
 CVE-2019-14986
 	RESERVED
 CVE-2019-14985
@@ -31,7 +31,7 @@ CVE-2019-14978
 CVE-2019-14977
 	RESERVED
 CVE-2019-14976 (iCMS 7.0.15 allows admincp.php?app=apps XSS via the keywords parameter ...)
-	TODO: check
+	NOT-FOR-US: idreamsoft iCMS
 CVE-2019-14975
 	RESERVED
 CVE-2019-14974
@@ -47,7 +47,7 @@ CVE-2019-14970
 CVE-2019-14969 (Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\N ...)
 	NOT-FOR-US: Netwrix Auditor
 CVE-2019-14968 (An issue was discovered in imcat 4.9. There is SQL Injection via the i ...)
-	TODO: check
+	NOT-FOR-US: imcat
 CVE-2019-14967 (An issue was discovered in Frappe Framework 10, 11 before 11.1.46, and ...)
 	NOT-FOR-US: Frappe Framework
 CVE-2019-14966 (An issue was discovered in Frappe Framework 10 through 12 before 12.0. ...)
@@ -123,7 +123,7 @@ CVE-2019-14935 (3CX Phone 15 on Windows has insecure permissions on the "%PROGRA
 CVE-2019-14934 (An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_ki ...)
 	TODO: check
 CVE-2019-14933 (Bagisto 0.1.5 allows CSRF under /admin URIs. ...)
-	TODO: check
+	NOT-FOR-US: Bagisto
 CVE-2019-14932 (The Recruitment module in Humanica Humatrix 7 1.0.0.681 and 1.0.0.203  ...)
 	NOT-FOR-US: Recruitment module in Humanica Humatrix
 CVE-2018-20966 (The woocommerce-jetpack plugin before 3.8.0 for WordPress has XSS in t ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f0390123e3085dfbdc10731dab0e364fe8485dd8

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f0390123e3085dfbdc10731dab0e364fe8485dd8
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190813/3695abcf/attachment.html>


More information about the debian-security-tracker-commits mailing list