[Git][security-tracker-team/security-tracker][master] NFUs

Moritz Muehlenhoff Sat, 11 Aug 2018 03:18:28 -0700

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
a18bf6e5 by Moritz Muehlenhoff at 2018-08-11T10:17:25Z
NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -238,19 +238,19 @@ CVE-2018-15192 (An SSRF vulnerability in webhooks in 
Gitea through 1.5.0-rc2 and
        - gitea <unfixed>
        NOTE: https://github.com/go-gitea/gitea/issues/4624
 CVE-2018-15191 (PHP Scripts Mall hotel-booking-script 2.0.4 allows remote 
attackers to ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15190 (PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the 
First ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15189 (PHP Scripts Mall advanced-real-estate-script has XSS via the 
Name ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15188 (PHP Scripts Mall advanced-real-estate-script 4.0.9 allows 
remote ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15187 (PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF 
via ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15186 (PHP Scripts Mall Chartered Accountant : Auditor Website 2.0.1 
has CSRF ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15185 (PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 
allows ...)
-       TODO: check
+       NOT-FOR-US: PHP Scripts Mall
 CVE-2018-15184 (PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 
has ...)
        NOT-FOR-US: PHP Scripts Mall Naukri / Shine / Jobsite Clone Script
 CVE-2018-15183 (PHP Scripts Mall Myperfectresume / JobHero / Resume Clone 
Script 2.0.6 ...)
@@ -369,7 +369,8 @@ CVE-2018-15131
 CVE-2018-15130 (ThinkSAAS through 2018-07-25 has XSS via the ...)
        NOT-FOR-US: ThinkSAAS
 CVE-2013-7464 (In csrf-magic before 1.0.4, if $GLOBALS['csrf']['secret'] is 
not ...)
-       TODO: check
+       - zoneminder <undetermined>
+       - cacti <undetermined>
 CVE-2018-15129 (ThinkSAAS through 2018-07-25 has XSS via the ...)
        NOT-FOR-US: ThinkSAAS
 CVE-2018-15128



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a18bf6e5b5c556fd61f3c561941792c5a5a419f3

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/a18bf6e5b5c556fd61f3c561941792c5a5a419f3
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] NFUs

Reply via email to