[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso carnil at debian.org
Sun Sep 15 09:10:29 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b0a74445 by security tracker role at 2019-09-15T08:10:18Z
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,31 @@
+CVE-2019-16318 (In Pimcore before 5.7.1, an attacker with limited privileges can bypas ...)
+	TODO: check
+CVE-2019-16317 (In Pimcore before 5.7.1, an attacker with limited privileges can trigg ...)
+	TODO: check
+CVE-2019-16316
+	RESERVED
+CVE-2019-16315
+	RESERVED
+CVE-2019-16314 (Indexhibit 2.1.5 allows a product reinstallation, with resultant remot ...)
+	TODO: check
+CVE-2019-16313 (ifw8 Router ROM v4.31 allows credential disclosure by reading the acti ...)
+	TODO: check
+CVE-2019-16312 (s-cms V3.0 has XSS in index.php?type=text via the S_id parameter. ...)
+	TODO: check
+CVE-2019-16311 (NIUSHOP V1.11 has CSRF via search_info to index.php. ...)
+	TODO: check
+CVE-2019-16310 (NIUSHOP V1.11 has XSS via the index.php?s=/admin URI. ...)
+	TODO: check
+CVE-2019-16309 (FlameCMS 3.3.5 has SQL injection in account/login.php via accountName. ...)
+	TODO: check
+CVE-2019-16308
+	RESERVED
+CVE-2019-16307 (A Reflected Cross-Site Scripting (XSS) vulnerability in the webEx modu ...)
+	TODO: check
+CVE-2019-16306
+	RESERVED
+CVE-2019-16305 (In MobaXterm 11.1 and 12.1, the protocol handler is vulnerable to comm ...)
+	TODO: check
 CVE-2019-16304
 	RESERVED
 CVE-2019-16303 (A class generated by the Generator in JHipster before 6.3.0 and JHipst ...)
@@ -18,8 +46,8 @@ CVE-2019-16296
 	RESERVED
 CVE-2019-16295
 	RESERVED
-CVE-2019-16294
-	RESERVED
+CVE-2019-16294 (SciLexer.dll in Scintilla in Notepad++ (x64) before 7.7 allows remote  ...)
+	TODO: check
 CVE-2019-16293 (The Create Discoveries feature of Open-AudIT before 3.2.0 allows an au ...)
 	NOT-FOR-US: Open-AudIT
 CVE-2019-16292



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0a74445d0f158edf04a59882e7ab0e64c5c6dce

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0a74445d0f158edf04a59882e7ab0e64c5c6dce
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190915/eab7da88/attachment.html>

More information about the debian-security-tracker-commits mailing list