[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Sep 28 09:10:24 BST 2022
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
551c0fad by security tracker role at 2022-09-28T08:10:13+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,263 @@
+CVE-2022-41676
+ RESERVED
+CVE-2022-41675
+ RESERVED
+CVE-2022-41674
+ RESERVED
+CVE-2022-41673
+ RESERVED
+CVE-2022-41672
+ RESERVED
+CVE-2022-41671
+ RESERVED
+CVE-2022-41670
+ RESERVED
+CVE-2022-41669
+ RESERVED
+CVE-2022-41668
+ RESERVED
+CVE-2022-41667
+ RESERVED
+CVE-2022-41666
+ RESERVED
+CVE-2022-41665
+ RESERVED
+CVE-2022-41664
+ RESERVED
+CVE-2022-41663
+ RESERVED
+CVE-2022-41662
+ RESERVED
+CVE-2022-41661
+ RESERVED
+CVE-2022-41660
+ RESERVED
+CVE-2022-41656
+ RESERVED
+CVE-2022-41655
+ RESERVED
+CVE-2022-41650
+ RESERVED
+CVE-2022-41647
+ RESERVED
+CVE-2022-41643
+ RESERVED
+CVE-2022-41640
+ RESERVED
+CVE-2022-41638
+ RESERVED
+CVE-2022-41635
+ RESERVED
+CVE-2022-41634
+ RESERVED
+CVE-2022-41633
+ RESERVED
+CVE-2022-41623
+ RESERVED
+CVE-2022-41620
+ RESERVED
+CVE-2022-41618
+ RESERVED
+CVE-2022-41616
+ RESERVED
+CVE-2022-41615
+ RESERVED
+CVE-2022-41612
+ RESERVED
+CVE-2022-41609
+ RESERVED
+CVE-2022-41608
+ RESERVED
+CVE-2022-41606
+ RESERVED
+CVE-2022-41605
+ RESERVED
+CVE-2022-41604 (Check Point ZoneAlarm Extreme Security before 15.8.211.19229 allows lo ...)
+ TODO: check
+CVE-2022-41603
+ RESERVED
+CVE-2022-41602
+ RESERVED
+CVE-2022-41601
+ RESERVED
+CVE-2022-41600
+ RESERVED
+CVE-2022-41599
+ RESERVED
+CVE-2022-41598
+ RESERVED
+CVE-2022-41597
+ RESERVED
+CVE-2022-41596
+ RESERVED
+CVE-2022-41595
+ RESERVED
+CVE-2022-41594
+ RESERVED
+CVE-2022-41593
+ RESERVED
+CVE-2022-41592
+ RESERVED
+CVE-2022-41591
+ RESERVED
+CVE-2022-41590
+ RESERVED
+CVE-2022-41589
+ RESERVED
+CVE-2022-41588
+ RESERVED
+CVE-2022-41587
+ RESERVED
+CVE-2022-41586
+ RESERVED
+CVE-2022-41585
+ RESERVED
+CVE-2022-41584
+ RESERVED
+CVE-2022-41583
+ RESERVED
+CVE-2022-41582
+ RESERVED
+CVE-2022-41581
+ RESERVED
+CVE-2022-41580
+ RESERVED
+CVE-2022-41579
+ RESERVED
+CVE-2022-41578
+ RESERVED
+CVE-2022-41577
+ RESERVED
+CVE-2022-41576
+ RESERVED
+CVE-2022-41575
+ RESERVED
+CVE-2022-41574
+ RESERVED
+CVE-2022-41573
+ RESERVED
+CVE-2022-41572
+ RESERVED
+CVE-2022-41571 (An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Local f ...)
+ TODO: check
+CVE-2022-41570 (An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Unauthe ...)
+ TODO: check
+CVE-2022-41569
+ RESERVED
+CVE-2022-41315
+ RESERVED
+CVE-2022-41155
+ RESERVED
+CVE-2022-41136
+ RESERVED
+CVE-2022-41135
+ RESERVED
+CVE-2022-41134
+ RESERVED
+CVE-2022-41132
+ RESERVED
+CVE-2022-40975
+ RESERVED
+CVE-2022-40966
+ RESERVED
+CVE-2022-40702
+ RESERVED
+CVE-2022-40700
+ RESERVED
+CVE-2022-40699
+ RESERVED
+CVE-2022-40697
+ RESERVED
+CVE-2022-40694
+ RESERVED
+CVE-2022-40311
+ RESERVED
+CVE-2022-40218
+ RESERVED
+CVE-2022-40216
+ RESERVED
+CVE-2022-40209
+ RESERVED
+CVE-2022-40203
+ RESERVED
+CVE-2022-40192
+ RESERVED
+CVE-2022-40130
+ RESERVED
+CVE-2022-40128
+ RESERVED
+CVE-2022-39044
+ RESERVED
+CVE-2022-38467
+ RESERVED
+CVE-2022-38456
+ RESERVED
+CVE-2022-38141
+ RESERVED
+CVE-2022-38063
+ RESERVED
+CVE-2022-38057
+ RESERVED
+CVE-2022-38055
+ RESERVED
+CVE-2022-36418
+ RESERVED
+CVE-2022-36399
+ RESERVED
+CVE-2022-35730
+ RESERVED
+CVE-2022-34840
+ RESERVED
+CVE-2022-3347
+ RESERVED
+CVE-2022-3346
+ RESERVED
+CVE-2022-3345
+ RESERVED
+CVE-2022-3344
+ RESERVED
+CVE-2022-3343
+ RESERVED
+CVE-2022-3342
+ RESERVED
+CVE-2022-3341
+ RESERVED
+CVE-2022-3340
+ RESERVED
+CVE-2022-3339
+ RESERVED
+CVE-2022-3338
+ RESERVED
+CVE-2022-3337
+ RESERVED
+CVE-2022-3336
+ RESERVED
+CVE-2022-3335
+ RESERVED
+CVE-2022-3334
+ RESERVED
+CVE-2022-3333 (A vulnerability, which was classified as problematic, was found in Zep ...)
+ TODO: check
+CVE-2022-3332 (A vulnerability classified as critical has been found in SourceCodeste ...)
+ TODO: check
+CVE-2022-3331
+ RESERVED
+CVE-2022-3330
+ RESERVED
+CVE-2022-3329
+ RESERVED
+CVE-2022-30544
+ RESERVED
+CVE-2022-27628
+ RESERVED
+CVE-2022-26375
+ RESERVED
+CVE-2021-46840
+ RESERVED
+CVE-2021-46839
+ RESERVED
+CVE-2020-36605
+ RESERVED
CVE-2022-41568
RESERVED
CVE-2022-41567
@@ -48,10 +308,10 @@ CVE-2022-3326
RESERVED
CVE-2022-3325
RESERVED
-CVE-2022-3324
- RESERVED
-CVE-2022-3323
- RESERVED
+CVE-2022-3324 (Stack-based Buffer Overflow in GitHub repository vim/vim prior to 9.0. ...)
+ TODO: check
+CVE-2022-3323 (An SQL injection vulnerability in Advantech iView 5.7.04.6469. The spe ...)
+ TODO: check
CVE-2022-41557
RESERVED
CVE-2022-41556 [handle RDHUP when collecting chunked body]
@@ -129,8 +389,7 @@ CVE-2022-3304
RESERVED
- chromium 106.0.5249.61-1
[buster] - chromium <end-of-life> (see DSA 5046)
-CVE-2022-3303
- RESERVED
+CVE-2022-3303 (A race condition flaw was found in the Linux kernel sound subsystem du ...)
- linux 5.19.11-1
NOTE: https://git.kernel.org/linus/8423f0b6d513b259fdab9c9bf4aaa6188d054c2d (6.0-rc5)
CVE-2022-3302
@@ -1454,7 +1713,7 @@ CVE-2022-40969
RESERVED
CVE-2022-40962
RESERVED
- {DSA-5238-1 DSA-5237-1 DLA-3121-1}
+ {DSA-5238-1 DSA-5237-1 DLA-3123-1 DLA-3121-1}
- firefox 105.0-1
- firefox-esr 102.3.0esr-1
- thunderbird 1:102.3.0-1
@@ -1467,7 +1726,7 @@ CVE-2022-40961
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-40/#CVE-2022-40961
CVE-2022-40960
RESERVED
- {DSA-5238-1 DSA-5237-1 DLA-3121-1}
+ {DSA-5238-1 DSA-5237-1 DLA-3123-1 DLA-3121-1}
- firefox 105.0-1
- firefox-esr 102.3.0esr-1
- thunderbird 1:102.3.0-1
@@ -1476,7 +1735,7 @@ CVE-2022-40960
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/#CVE-2022-40960
CVE-2022-40959
RESERVED
- {DSA-5238-1 DSA-5237-1 DLA-3121-1}
+ {DSA-5238-1 DSA-5237-1 DLA-3123-1 DLA-3121-1}
- firefox 105.0-1
- firefox-esr 102.3.0esr-1
- thunderbird 1:102.3.0-1
@@ -1485,7 +1744,7 @@ CVE-2022-40959
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/#CVE-2022-40959
CVE-2022-40958
RESERVED
- {DSA-5238-1 DSA-5237-1 DLA-3121-1}
+ {DSA-5238-1 DSA-5237-1 DLA-3123-1 DLA-3121-1}
- firefox 105.0-1
- firefox-esr 102.3.0esr-1
- thunderbird 1:102.3.0-1
@@ -1494,7 +1753,7 @@ CVE-2022-40958
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/#CVE-2022-40958
CVE-2022-40957
RESERVED
- {DSA-5238-1 DSA-5237-1 DLA-3121-1}
+ {DSA-5238-1 DSA-5237-1 DLA-3123-1 DLA-3121-1}
- firefox 105.0-1
- firefox-esr 102.3.0esr-1
- thunderbird 1:102.3.0-1
@@ -1503,7 +1762,7 @@ CVE-2022-40957
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2022-42/#CVE-2022-40957
CVE-2022-40956
RESERVED
- {DSA-5238-1 DSA-5237-1 DLA-3121-1}
+ {DSA-5238-1 DSA-5237-1 DLA-3123-1 DLA-3121-1}
- firefox 105.0-1
- firefox-esr 102.3.0esr-1
- thunderbird 1:102.3.0-1
@@ -1689,10 +1948,10 @@ CVE-2022-40880
RESERVED
CVE-2022-40879
RESERVED
-CVE-2022-40878
- RESERVED
-CVE-2022-40877
- RESERVED
+CVE-2022-40878 (In Exam Reviewer Management System 1.0, an authenticated attacker can ...)
+ TODO: check
+CVE-2022-40877 (Exam Reviewer Management System 1.0 is vulnerable to SQL Injection via ...)
+ TODO: check
CVE-2022-40876
RESERVED
CVE-2022-40875
@@ -1811,10 +2070,10 @@ CVE-2022-40819
RESERVED
CVE-2022-40818
RESERVED
-CVE-2022-40817
- RESERVED
-CVE-2022-40816
- RESERVED
+CVE-2022-40817 (Zammad 5.2.1 has a fine-grained permission model that allows to config ...)
+ TODO: check
+CVE-2022-40816 (Zammad 5.2.1 is vulnerable to Incorrect Access Control. Zammad's asset ...)
+ TODO: check
CVE-2022-40815
RESERVED
CVE-2022-40814
@@ -2657,8 +2916,8 @@ CVE-2022-40499
RESERVED
CVE-2022-40498
RESERVED
-CVE-2022-40497
- RESERVED
+CVE-2022-40497 (Wazuh v3.6.1 - v3.13.5, v4.0.0 - v4.2.7, and v4.3.0 - v4.3.7 were disc ...)
+ TODO: check
CVE-2022-40496
RESERVED
CVE-2022-40495
@@ -2948,12 +3207,12 @@ CVE-2022-40356
RESERVED
CVE-2022-40355
RESERVED
-CVE-2022-40354
- RESERVED
-CVE-2022-40353
- RESERVED
-CVE-2022-40352
- RESERVED
+CVE-2022-40354 (Online Tours & Travels Management System v1.0 was discovered to co ...)
+ TODO: check
+CVE-2022-40353 (Online Tours & Travels Management System v1.0 was discovered to co ...)
+ TODO: check
+CVE-2022-40352 (Online Tours & Travels Management System v1.0 was discovered to co ...)
+ TODO: check
CVE-2022-40351
RESERVED
CVE-2022-40350
@@ -3045,12 +3304,12 @@ CVE-2022-40309
RESERVED
CVE-2022-40308
RESERVED
-CVE-2022-40199
- RESERVED
-CVE-2022-38975
- RESERVED
-CVE-2022-37346
- RESERVED
+CVE-2022-40199 (Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 t ...)
+ TODO: check
+CVE-2022-38975 (DOM-based cross-site scripting vulnerability in EC-CUBE 4 series (EC-C ...)
+ TODO: check
+CVE-2022-37346 (EC-CUBE plugin 'Product Image Bulk Upload Plugin' 1.0.0 and 4.1.0 cont ...)
+ TODO: check
CVE-2022-3172
RESERVED
- kubernetes <unfixed>
@@ -4159,8 +4418,8 @@ CVE-2022-39837
RESERVED
CVE-2022-39836
RESERVED
-CVE-2022-39835
- RESERVED
+CVE-2022-39835 (An issue was discovered in Gajim through 1.4.7. The vulnerability allo ...)
+ TODO: check
CVE-2022-39834
RESERVED
CVE-2022-39833
@@ -5373,12 +5632,12 @@ CVE-2022-39260
RESERVED
CVE-2022-39259
RESERVED
-CVE-2022-39258
- RESERVED
+CVE-2022-39258 (mailcow is a mailserver suite. A vulnerability innversions prior to 20 ...)
+ TODO: check
CVE-2022-39257
RESERVED
-CVE-2022-39256
- RESERVED
+CVE-2022-39256 (Orckestra C1 CMS is a .NET based Web Content Management System. A vuln ...)
+ TODO: check
CVE-2022-39255
RESERVED
CVE-2022-39254
@@ -5893,10 +6152,10 @@ CVE-2022-39056
RESERVED
CVE-2022-39055
RESERVED
-CVE-2022-39054
- RESERVED
-CVE-2022-39053
- RESERVED
+CVE-2022-39054 (Cowell enterprise travel management system has insufficient filtering ...)
+ TODO: check
+CVE-2022-39053 (Heimavista Rpage has insufficient filtering for platform web URL. An u ...)
+ TODO: check
CVE-2022-39052
RESERVED
CVE-2022-39051 (Attacker might be able to execute malicious Perl code in the Template ...)
@@ -5951,20 +6210,20 @@ CVE-2022-39037
RESERVED
CVE-2022-39036
RESERVED
-CVE-2022-39035
- RESERVED
-CVE-2022-39034
- RESERVED
-CVE-2022-39033
- RESERVED
-CVE-2022-39032
- RESERVED
-CVE-2022-39031
- RESERVED
-CVE-2022-39030
- RESERVED
-CVE-2022-39029
- RESERVED
+CVE-2022-39035 (Smart eVision has insufficient filtering for special characters in the ...)
+ TODO: check
+CVE-2022-39034 (Smart eVision has a path traversal vulnerability in the Report API fun ...)
+ TODO: check
+CVE-2022-39033 (Smart eVision’s file acquisition function has a path traversal v ...)
+ TODO: check
+CVE-2022-39032 (Smart eVision has an improper privilege management vulnerability. A re ...)
+ TODO: check
+CVE-2022-39031 (Smart eVision has insufficient authorization for task acquisition func ...)
+ TODO: check
+CVE-2022-39030 (smart eVision has inadequate authorization for system information quer ...)
+ TODO: check
+CVE-2022-39029 (Smart eVision has inadequate authorization for the database query func ...)
+ TODO: check
CVE-2022-39027
RESERVED
CVE-2022-39026
@@ -6249,8 +6508,8 @@ CVE-2022-38934
RESERVED
CVE-2022-38933
RESERVED
-CVE-2022-38932
- RESERVED
+CVE-2022-38932 (readelf in ToaruOS 2.0.1 has a global overflow allowing RCE when parsi ...)
+ TODO: check
CVE-2022-38931 (A Server-Side Request Forgery (SSRF) in fetch_net_file_upload function ...)
NOT-FOR-US: baijiacms
CVE-2022-38930
@@ -7027,8 +7286,8 @@ CVE-2022-2955
RESERVED
CVE-2022-2954
RESERVED
-CVE-2022-38699
- RESERVED
+CVE-2022-38699 (Armoury Crate Service’s logging function has insufficient valida ...)
+ TODO: check
CVE-2022-38698
RESERVED
CVE-2022-38697
@@ -8222,8 +8481,8 @@ CVE-2022-38337
RESERVED
CVE-2022-38336
RESERVED
-CVE-2022-38335
- RESERVED
+CVE-2022-38335 (Vtiger CRM v7.4.0 was discovered to contain a stored cross-site script ...)
+ TODO: check
CVE-2022-38334 (XPDF v4.04 was discovered to contain a stack overflow via the function ...)
TODO: check
CVE-2022-38333 (Openwrt before v21.02.3 and Openwrt v22.03.0-rc6 were discovered to co ...)
@@ -11148,8 +11407,8 @@ CVE-2022-37211
RESERVED
CVE-2022-37210
RESERVED
-CVE-2022-37209
- RESERVED
+CVE-2022-37209 (JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do no ...)
+ TODO: check
CVE-2022-37208
RESERVED
CVE-2022-37207 (JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do no ...)
@@ -11180,8 +11439,8 @@ CVE-2022-37195
RESERVED
CVE-2022-37194
RESERVED
-CVE-2022-37193
- RESERVED
+CVE-2022-37193 (Chipolo ONE Bluetooth tracker (2020) Chipolo iOS app version 4.13.0 is ...)
+ TODO: check
CVE-2022-37192
RESERVED
CVE-2022-37191 (The component "cuppa/api/index.php" of CuppaCMS v1.0 is Vulnerable to ...)
@@ -11546,8 +11805,8 @@ CVE-2022-37030 (Weak permissions on the configuration file in the PAM module in
NOT-FOR-US: Gromox
CVE-2022-37029
RESERVED
-CVE-2022-37028
- RESERVED
+CVE-2022-37028 (ISAMS 22.2.3.2 is prone to stored Cross-site Scripting (XSS) attack on ...)
+ TODO: check
CVE-2022-37027 (Ahsay AhsayCBS 9.1.4.0 allows an authenticated system user to inject a ...)
NOT-FOR-US: Ahsay AhsayCBS
CVE-2022-37026 (In Erlang/OTP before 23.3.4.15, 24.x before 24.3.4.2, and 25.x before ...)
@@ -18829,8 +19088,8 @@ CVE-2021-46824 (Cross Site Scripting (XSS) vulnerability in sourcecodester Schoo
NOT-FOR-US: sourcecodester School File Management System
CVE-2022-34327
RESERVED
-CVE-2022-34326
- RESERVED
+CVE-2022-34326 (On Realtek RTL8195AM devices before 284241d70308ff2519e40afd7b284ba892 ...)
+ TODO: check
CVE-2022-34325
RESERVED
CVE-2022-34324
@@ -26781,8 +27040,8 @@ CVE-2022-31369
RESERVED
CVE-2022-31368
RESERVED
-CVE-2022-31367
- RESERVED
+CVE-2022-31367 (Strapi before 3.6.10 and 4.x before 4.1.10 mishandles hidden attribute ...)
+ TODO: check
CVE-2022-31366
RESERVED
CVE-2022-31365
@@ -52657,8 +52916,8 @@ CVE-2022-23008 (On NGINX Controller API Management versions 3.18.0-3.19.0, an au
NOT-FOR-US: F5 BIG-IP
CVE-2022-23007
RESERVED
-CVE-2022-23006
- RESERVED
+CVE-2022-23006 (A stack-based buffer overflow vulnerability was found on Western Digit ...)
+ TODO: check
CVE-2022-23005
RESERVED
CVE-2022-23004 (When computing a shared secret or point multiplication on the NIST P-2 ...)
@@ -55670,7 +55929,7 @@ CVE-2021-45944 (Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in
NOTE: https://github.com/google/oss-fuzz-vulns/blob/main/vulns/ghostscript/OSV-2021-237.yaml
NOTE: https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=7861fcad13c497728189feafb41cd57b5b50ea25
CVE-2021-45943 (GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::C ...)
- {DLA-2877-1}
+ {DSA-5239-1 DLA-2877-1}
[experimental] - gdal 3.4.1~rc1+dfsg-1~exp1
- gdal 3.4.1+dfsg-1
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=41993
@@ -72936,8 +73195,8 @@ CVE-2021-41435 (A brute-force protection bypass in CAPTCHA protection in ASUS RO
NOT-FOR-US: ASUS
CVE-2021-41434
RESERVED
-CVE-2021-41433
- RESERVED
+CVE-2021-41433 (SQL Injection vulnerability exists in version 1.0 of the Resumes Manag ...)
+ TODO: check
CVE-2021-41432 (A stored cross-site scripting (XSS) vulnerability exists in FlatPress ...)
NOT-FOR-US: FlatPress
CVE-2021-41431
@@ -88987,8 +89246,8 @@ CVE-2021-35038
RESERVED
CVE-2021-35037 (Jamf Pro before 10.30.1 allows for an unvalidated URL redirect vulnera ...)
NOT-FOR-US: Jamf Pro
-CVE-2021-35036
- REJECTED
+CVE-2021-35036 (A cleartext storage of information vulnerability in the Zyxel VMG3625- ...)
+ TODO: check
CVE-2021-35035 (A cleartext storage of sensitive information vulnerability in the Zyxe ...)
NOT-FOR-US: Zyxel
CVE-2021-35034 (An insufficient session expiration vulnerability in the CGI program of ...)
@@ -107625,10 +107884,10 @@ CVE-2021-27864
RESERVED
CVE-2021-27863
RESERVED
-CVE-2021-27862
- RESERVED
-CVE-2021-27861
- RESERVED
+CVE-2021-27862 (Layer 2 network filtering capabilities such as IPv6 RA guard can be by ...)
+ TODO: check
+CVE-2021-27861 (Layer 2 network filtering capabilities such as IPv6 RA guard can be by ...)
+ TODO: check
CVE-2021-27860 (A vulnerability in the web management interface of FatPipe WARP, IPVPN ...)
NOT-FOR-US: FatPipe
CVE-2021-27859 (A missing authorization vulnerability in the web management interface ...)
@@ -107641,10 +107900,10 @@ CVE-2021-27856 (FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2
NOT-FOR-US: FatPipe
CVE-2021-27855 (FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 ...)
NOT-FOR-US: FatPipe
-CVE-2021-27854
- RESERVED
-CVE-2021-27853
- RESERVED
+CVE-2021-27854 (Layer 2 network filtering capabilities such as IPv6 RA guard can be by ...)
+ TODO: check
+CVE-2021-27853 (Layer 2 network filtering capabilities such as IPv6 RA guard or ARP in ...)
+ TODO: check
CVE-2021-27852 (Deserialization of Untrusted Data vulnerability in CheckboxWeb.dll of ...)
NOT-FOR-US: Checkbox Survey
CVE-2021-27850 (A critical unauthenticated remote code execution vulnerability was fou ...)
@@ -161238,7 +161497,7 @@ CVE-2020-18153
RESERVED
CVE-2020-18152
RESERVED
-CVE-2020-18151 (Cross Site Request Forgerly (CSRF) vulnerability in ThinkCMF v5.1.0, w ...)
+CVE-2020-18151 (Cross Site Request Forgery (CSRF) vulnerability in ThinkCMF v5.1.0, wh ...)
NOT-FOR-US: ThinkCMF
CVE-2020-18150
RESERVED
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/551c0fad01187eba3a540e6d596c3b4cbd472519
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/551c0fad01187eba3a540e6d596c3b4cbd472519
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220928/ed3d57a0/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list