[Git][security-tracker-team/security-tracker][master] Add new CVEs for limesurvey, itp'ed

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
76198c2e by Salvatore Bonaccorso at 2024-09-03T22:55:03+02:00
Add new CVEs for limesurvey, itp'ed

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -86,11 +86,11 @@ CVE-2024-42991 (MCMS v5.4.1 has front-end file upload vulnerability which can le
 CVE-2024-42904 (A cross-site scripting (XSS) vulnerability in SysPass 3.2.x allows att ...)
 	NOT-FOR-US: SysPass
 CVE-2024-42903 (A Host header injection vulnerability in the password reset function o ...)
-	TODO: check
+	- limesurvey <itp> (bug #472802)
 CVE-2024-42902 (An issue in the js_localize.php function of LimeSurvey v6.6.2 and befo ...)
-	TODO: check
+	- limesurvey <itp> (bug #472802)
 CVE-2024-42901 (A CSV injection vulnerability in Lime Survey v6.5.12 allows attackers  ...)
-	TODO: check
+	- limesurvey <itp> (bug #472802)
 CVE-2024-41718
 	REJECTED
 CVE-2024-41436 (ClickHouse v24.3.3.102 was discovered to contain a buffer overflow via ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76198c2ea9d8a6d7de98370b9aca5170865bd107

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/76198c2ea9d8a6d7de98370b9aca5170865bd107
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240903/21ab1ad9/attachment.htm>