[Git][security-tracker-team/security-tracker][master] Process two limesurvey CVEs

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Jun 29 21:46:20 BST 2021



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7dea7cca by Salvatore Bonaccorso at 2021-06-29T22:44:54+02:00
Process two limesurvey CVEs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -59507,7 +59507,7 @@ CVE-2020-23712
 CVE-2020-23711 (SQL Injection vulnerability in NavigateCMS 2.9 via the URL encoded GET ...)
 	NOT-FOR-US: NavigateCMS
 CVE-2020-23710 (Cross Site Scripting (XSS) vulneraiblity in LimeSurvey 4.2.5 on textbo ...)
-	TODO: check
+	- limesurvey <itp> (bug #472802)
 CVE-2020-23709
 	RESERVED
 CVE-2020-23708
@@ -61728,7 +61728,7 @@ CVE-2020-22609 (Cross Site Scripting (XSS) vulnerability in Enhancesoft osTicket
 CVE-2020-22608 (Cross Site Scripting vulnerability in Enhancesoft osTicket before v1.1 ...)
 	NOT-FOR-US: osTicket
 CVE-2020-22607 (Cross Site Scripting vulnerabilty in LimeSurvey 4.1.11+200316 via the  ...)
-	TODO: check
+	- limesurvey <itp> (bug #472802)
 CVE-2020-22606
 	RESERVED
 CVE-2020-22605



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7dea7cca5413905419ab4034299f24f3f81e7ced

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7dea7cca5413905419ab4034299f24f3f81e7ced
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210629/84022c89/attachment.htm>


More information about the debian-security-tracker-commits mailing list