Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f3770a04 by security tracker role at 2018-10-28T08:10:17Z
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,4 +1,100 @@
-CVE-2018-18710 [cdrom: information leak]
+CVE-2018-18750
+ RESERVED
+CVE-2018-18749 (data-tools through 2017-07-26 has an Integer Overflow leading
to an ...)
+ TODO: check
+CVE-2018-18748 (Sandboxie 5.26 allows a Sandbox Escape via an "import
os" statement, ...)
+ TODO: check
+CVE-2018-18747
+ RESERVED
+CVE-2018-18746
+ RESERVED
+CVE-2018-18745 (An XSS issue was discovered in SEMCMS 3.4 via ...)
+ TODO: check
+CVE-2018-18744 (An XSS issue was discovered in SEMCMS 3.4 via the fifth text
box to the ...)
+ TODO: check
+CVE-2018-18743 (An XSS issue was discovered in SEMCMS 3.4 via the second text
field to ...)
+ TODO: check
+CVE-2018-18742 (A CSRF issue was discovered in SEMCMS 3.4 via the ...)
+ TODO: check
+CVE-2018-18741 (An XSS issue was discovered in SEMCMS 3.4 via ...)
+ TODO: check
+CVE-2018-18740 (An XSS issue was discovered in SEMCMS 3.4 via the first input
field to ...)
+ TODO: check
+CVE-2018-18739 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
+ TODO: check
+CVE-2018-18738 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
+ TODO: check
+CVE-2018-18737 (An XXE issue was discovered in Douchat 4.0.4 because
Data\notify.php ...)
+ TODO: check
+CVE-2018-18736 (An XSS issue was discovered in catfish blog 2.0.33, related to
"write ...)
+ TODO: check
+CVE-2018-18735 (A CSRF issue was discovered in admin/Index/tiquan in catfish
blog ...)
+ TODO: check
+CVE-2018-18734 (A CSRF issue was discovered in admin/Index/addmanageuser.html
in ...)
+ TODO: check
+CVE-2018-18733 (An XSS issue was discovered in Catfish CMS 4.8.30, related to
"write ...)
+ TODO: check
+CVE-2018-18732 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18731 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18730 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18729 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18728 (An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN,
AC15 ...)
+ TODO: check
+CVE-2018-18727 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18726 (An XSS issue was discovered in
admin/sitelink/editsitelink?id=16 in ...)
+ TODO: check
+CVE-2018-18725 (An XSS issue was discovered in admin/banner/editbanner?id=20
in YUNUCMS ...)
+ TODO: check
+CVE-2018-18724 (An XSS issue was discovered in ...)
+ TODO: check
+CVE-2018-18723 (An XSS issue was discovered in
index.php/admin/area/editarea/id/110000 ...)
+ TODO: check
+CVE-2018-18722 (An XSS issue was discovered in
admin/content/editcontent?id=29&gopage=1 ...)
+ TODO: check
+CVE-2018-18721 (An XSS issue was discovered in admin/link/editlink?id=5 in
YUNUCMS ...)
+ TODO: check
+CVE-2018-18720 (An XSS issue was discovered in index.php/admin/system/basic in
YUNUCMS ...)
+ TODO: check
+CVE-2018-18719
+ RESERVED
+CVE-2018-18718 (An issue was discovered in gThumb through 3.6.2. There is a
double-free ...)
+ TODO: check
+CVE-2018-18717 (An issue was discovered in Eleanor CMS through 2015-03-19. XSS
exists ...)
+ TODO: check
+CVE-2018-18716
+ RESERVED
+CVE-2018-18715
+ RESERVED
+CVE-2018-18714
+ RESERVED
+CVE-2018-18713 (The function down_sql_action() in
/admin/model/database.class.php in ...)
+ TODO: check
+CVE-2018-18712 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF
...)
+ TODO: check
+CVE-2018-18711 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF
...)
+ TODO: check
+CVE-2018-18709 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18708 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18707 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2018-18706 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
+ TODO: check
+CVE-2016-10734 (ProjectSend (formerly cFTP) r582 allows Insecure Direct Object
...)
+ TODO: check
+CVE-2016-10733 (ProjectSend (formerly cFTP) r582 allows directory traversal
via ...)
+ TODO: check
+CVE-2016-10732 (ProjectSend (formerly cFTP) r582 allows authentication bypass
via a ...)
+ TODO: check
+CVE-2016-10731 (ProjectSend (formerly cFTP) r582 allows SQL injection via ...)
+ TODO: check
+CVE-2018-18710 (An issue was discovered in the Linux kernel through 4.19. An
...)
- linux <unfixed>
NOTE:
https://git.kernel.org/linus/e4f3aa2e1e67bb48dfbaaf1cad59013d5a5bc276
CVE-2018-18705 (PhpTpoint hospital management system suffers from multiple SQL
...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3770a043292df3555e07d250d6cbe47609b3785
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3770a043292df3555e07d250d6cbe47609b3785
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
