[Git][security-tracker-team/security-tracker][master] Add CVE-2022-27258/hubzilla
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Apr 16 08:04:54 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b9f51609 by Salvatore Bonaccorso at 2022-04-16T09:04:25+02:00
Add CVE-2022-27258/hubzilla
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -5359,7 +5359,7 @@ CVE-2022-1031 (Use After Free in op_is_set_bp in GitHub repository radareorg/rad
NOTE: https://huntr.dev/bounties/37da2cd6-0b46-4878-a32e-acbfd8f6f457
NOTE: https://github.com/radareorg/radare2/commit/a7ce29647fcb38386d7439696375e16e093d6acb
CVE-2022-27258 (Multiple Cross-Site Scripting (XSS) vulnerabilities in Hubzilla 7.0.3 ...)
- TODO: check
+ - hubzilla <itp> (bug #950399)
CVE-2022-27257 (A PHP Local File Inclusion vulneraility in the default Redbasic theme ...)
NOT-FOR-US: Redbasic theme for Hubzilla
CVE-2022-27256 (A PHP Local File inclusion vulnerability in the Redbasic theme for Hub ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b9f516093f576fa61ad3404309319b51bc9b96c3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b9f516093f576fa61ad3404309319b51bc9b96c3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220416/b44598a2/attachment.htm>
More information about the debian-security-tracker-commits
mailing list