[Git][security-tracker-team/security-tracker][master] add upstream reference for hamster-time-tracker
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Dec 24 22:48:56 GMT 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2b4f9d10 by Moritz Muehlenhoff at 2023-12-24T23:48:23+01:00
add upstream reference for hamster-time-tracker
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -17464,7 +17464,7 @@ CVE-2023-37739 (i-doit Pro v25 and below was discovered to be vulnerable to path
CVE-2023-36250 (CSV Injection vulnerability in GNOME time tracker version 3.0.2, allow ...)
- hamster-time-tracker <unfixed> (bug #1059296)
NOTE: https://github.com/BrunoTeixeira1996/CVE-2023-36250/blob/main/README.md
- NOTE: Report sounds a little dubious, it's not really clear whether this cross any security boundary
+ NOTE: https://github.com/projecthamster/hamster/issues/750
CVE-2023-2848 (Movim prior to version 0.22 is affected by a Cross-Site WebSocket Hija ...)
NOT-FOR-US: Movim
CVE-2023-4948 (The WooCommerce CVR Payment Gateway plugin for WordPress is vulnerable ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b4f9d1076a9bd345a5fde287e383c81f8e61b2b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2b4f9d1076a9bd345a5fde287e383c81f8e61b2b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231224/d7bf842d/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list