[Git][security-tracker-team/security-tracker][master] Add CVE-2022-4438{0,1}/snipe-it

Sun Dec 25 08:41:16 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
512f05a5 by Salvatore Bonaccorso at 2022-12-25T09:40:37+01:00
Add CVE-2022-4438{0,1}/snipe-it

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -12825,9 +12825,9 @@ CVE-2022-44383
 CVE-2022-44382
 	RESERVED
 CVE-2022-44381 (Snipe-IT through 6.0.14 allows attackers to check whether a user accou ...)
-	TODO: check
+	- snipe-it <itp> (bug #1005172)
 CVE-2022-44380 (Snipe-IT before 6.0.14 is vulnerable to Cross Site Scripting (XSS) for ...)
-	TODO: check
+	- snipe-it <itp> (bug #1005172)
 CVE-2022-44379 (Automotive Shop Management System v1.0 is vulnerable to SQL Injection  ...)
 	NOT-FOR-US: Automotive Shop Management System
 CVE-2022-44378 (Automotive Shop Management System v1.0 is vulnerable to SQL via /asms/ ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/512f05a561ef1e4ab04ac088209d0419024ddcf9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/512f05a561ef1e4ab04ac088209d0419024ddcf9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221225/7e052810/attachment-0001.htm>
