[Git][security-tracker-team/security-tracker][master] Add CVE-2023-49469/shaarli
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Dec 28 08:51:39 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7a30cf43 by Salvatore Bonaccorso at 2023-12-28T09:51:16+01:00
Add CVE-2023-49469/shaarli
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -29,7 +29,9 @@ CVE-2023-50445 (Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.
CVE-2023-50038 (There is an arbitrary file upload vulnerability in the background of t ...)
- textpattern <removed>
CVE-2023-49469 (Reflected Cross Site Scripting (XSS) vulnerability in Shaarli v0.12.2, ...)
- TODO: check
+ - shaarli 0.13.0+dfsg-1
+ NOTE: https://github.com/shaarli/Shaarli/issues/2038
+ NOTE: https://github.com/shaarli/Shaarli/commit/326870f216ba52d80488cb4ba3fadcf1247d7cf8 (v0.13.0)
CVE-2023-49230 (An issue was discovered in Peplink Balance Two before 8.4.0. A missing ...)
NOT-FOR-US: Peplink Balance Two
CVE-2023-49229 (An issue was discovered in Peplink Balance Two before 8.4.0. A missing ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a30cf4353d0fdd16044df3d5e40268b319f8c0d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7a30cf4353d0fdd16044df3d5e40268b319f8c0d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20231228/cf907d9d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list