[Git][security-tracker-team/security-tracker][master] Process some NFUs

Salvatore Bonaccorso carnil at debian.org
Fri Sep 20 21:33:38 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f5041f03 by Salvatore Bonaccorso at 2019-09-20T20:32:58Z
Process some NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,11 +1,11 @@
 CVE-2019-16645 (An issue was discovered in Embedthis GoAhead 2.5.0. Certain pages (suc ...)
-	TODO: check
+	NOT-FOR-US: Embedthis GoAhead
 CVE-2019-16644 (App\Home\Controller\ZhuantiController.class.php in TuziCMS 2.0.6 has S ...)
-	TODO: check
+	NOT-FOR-US: TuziCMS
 CVE-2019-16643 (An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerab ...)
-	TODO: check
+	NOT-FOR-US: ZrLog
 CVE-2019-16642 (App\Mobile\Controller\ZhuantiController.class.php in TuziCMS 2.0.6 has ...)
-	TODO: check
+	NOT-FOR-US: TuziCMS
 CVE-2019-16641
 	RESERVED
 CVE-2019-16640
@@ -243,9 +243,9 @@ CVE-2016-11001 (The user-submitted-posts plugin before 20160215 for WordPress ha
 CVE-2016-11000 (The wp-ultimate-exporter plugin through 1.1 for WordPress has SQL inje ...)
 	NOT-FOR-US: wp-ultimate-exporter plugin for WordPress
 CVE-2016-10999 (The Goodnews theme through 2016-02-28 for WordPress has XSS via the s  ...)
-	TODO: check
+	NOT-FOR-US: Goodnews theme for WordPress
 CVE-2016-10998 (The ocim-mp3 plugin through 2016-03-07 for WordPress has wp-content/pl ...)
-	TODO: check
+	NOT-FOR-US: ocim-mp3 plugin for WordPress
 CVE-2016-10997 (The beauty-premium theme 1.0.8 for WordPress has CSRF with resultant a ...)
 	NOT-FOR-US: beauty-premium theme for WordPress
 CVE-2016-10996 (The optinmonster plugin before 1.1.4.6 for WordPress has incorrect acc ...)
@@ -311,9 +311,9 @@ CVE-2019-16536
 CVE-2019-16535
 	RESERVED
 CVE-2019-16534 (On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a c ...)
-	TODO: check
+	NOT-FOR-US: DrayTek Vigor2925 devices
 CVE-2019-16533 (On DrayTek Vigor2925 devices with firmware 3.8.4.3, Incorrect Access C ...)
-	TODO: check
+	NOT-FOR-US: DrayTek Vigor2925 devices
 CVE-2019-16532
 	RESERVED
 CVE-2019-16531 (LayerBB before 1.1.4 has multiple CSRF issues, as demonstrated by chan ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f5041f03d5def81f06c00e35288aca088e1eea44

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f5041f03d5def81f06c00e35288aca088e1eea44
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190920/833d794d/attachment.html>

More information about the debian-security-tracker-commits mailing list