[Git][security-tracker-team/security-tracker][master] automatic update

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Jan 16 08:10:31 GMT 2023



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d26f6c61 by security tracker role at 2023-01-16T08:10:14+00:00
automatic update

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,25 @@
+CVE-2023-0316 (Path Traversal: '\..\filename' in GitHub repository froxlor/froxlor pr ...)
+	TODO: check
+CVE-2023-0315 (Command Injection in GitHub repository froxlor/froxlor prior to 2.0.8. ...)
+	TODO: check
+CVE-2023-0314 (Cross-site Scripting (XSS) - Reflected in GitHub repository thorsten/p ...)
+	TODO: check
+CVE-2023-0313 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpm ...)
+	TODO: check
+CVE-2023-0312 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpm ...)
+	TODO: check
+CVE-2023-0311 (Improper Authentication in GitHub repository thorsten/phpmyfaq prior t ...)
+	TODO: check
+CVE-2023-0310 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpm ...)
+	TODO: check
+CVE-2023-0309 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpm ...)
+	TODO: check
+CVE-2023-0308 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpm ...)
+	TODO: check
+CVE-2023-0307 (Weak Password Requirements in GitHub repository thorsten/phpmyfaq prio ...)
+	TODO: check
+CVE-2023-0306 (Cross-site Scripting (XSS) - Stored in GitHub repository thorsten/phpm ...)
+	TODO: check
 CVE-2023-XXXX [Multiple integer overflow and buffer overflow issues in game loading]
 	- sgt-puzzles <unfixed> (bug #1028986)
 CVE-2023-0305 (A vulnerability classified as critical was found in SourceCodester Onl ...)
@@ -52,8 +74,8 @@ CVE-2023-0299 (Improper Input Validation in GitHub repository publify/publify pr
 	NOT-FOR-US: Publify
 CVE-2022-4889 (A vulnerability classified as critical was found in visegripped Strack ...)
 	TODO: check
-CVE-2018-25075
-	RESERVED
+CVE-2018-25075 (A vulnerability classified as critical has been found in karsany OBrid ...)
+	TODO: check
 CVE-2016-15019 (A vulnerability was found in tombh jekbox. It has been rated as proble ...)
 	TODO: check
 CVE-2016-15018 (A vulnerability was found in krail-jpa up to 0.9.1. It has been classi ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d26f6c61f0addea66e340a89712c1850ff71cd8a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d26f6c61f0addea66e340a89712c1850ff71cd8a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230116/7250a015/attachment.htm>


More information about the debian-security-tracker-commits mailing list