[Git][security-tracker-team/security-tracker][master] Process NFUs
Salvatore Bonaccorso
carnil at debian.org
Sun Sep 15 22:08:09 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4e30944a by Salvatore Bonaccorso at 2019-09-15T21:07:51Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -26,25 +26,25 @@ CVE-2019-16321 (ScadaBR 1.0CE, and 1.1.x through 1.1.0-RC, has XSS via a request
CVE-2019-16320 (Cobham Sea Tel v170 224521 through v194 225444 devices allow attackers ...)
TODO: check
CVE-2019-16318 (In Pimcore before 5.7.1, an attacker with limited privileges can bypas ...)
- TODO: check
+ NOT-FOR-US: Pimcore
CVE-2019-16317 (In Pimcore before 5.7.1, an attacker with limited privileges can trigg ...)
- TODO: check
+ NOT-FOR-US: Pimcore
CVE-2019-16316
RESERVED
CVE-2019-16315
RESERVED
CVE-2019-16314 (Indexhibit 2.1.5 allows a product reinstallation, with resultant remot ...)
- TODO: check
+ NOT-FOR-US: Indexhibit
CVE-2019-16313 (ifw8 Router ROM v4.31 allows credential disclosure by reading the acti ...)
- TODO: check
+ NOT-FOR-US: ifw8 Router ROM
CVE-2019-16312 (s-cms V3.0 has XSS in index.php?type=text via the S_id parameter. ...)
- TODO: check
+ NOT-FOR-US: s-cms
CVE-2019-16311 (NIUSHOP V1.11 has CSRF via search_info to index.php. ...)
- TODO: check
+ NOT-FOR-US: NIUSHOP
CVE-2019-16310 (NIUSHOP V1.11 has XSS via the index.php?s=/admin URI. ...)
- TODO: check
+ NOT-FOR-US: NIUSHOP
CVE-2019-16309 (FlameCMS 3.3.5 has SQL injection in account/login.php via accountName. ...)
- TODO: check
+ NOT-FOR-US: FlameCMS
CVE-2019-16308
RESERVED
CVE-2019-16307 (A Reflected Cross-Site Scripting (XSS) vulnerability in the webEx modu ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e30944af241ca9c6d16f6d1af9e9f4cb8a80d2c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4e30944af241ca9c6d16f6d1af9e9f4cb8a80d2c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190915/3bbdad6e/attachment.html>
More information about the debian-security-tracker-commits
mailing list