Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
678ff378 by Salvatore Bonaccorso at 2018-10-28T09:17:04Z
Process NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9,63 +9,63 @@ CVE-2018-18747
CVE-2018-18746
RESERVED
CVE-2018-18745 (An XSS issue was discovered in SEMCMS 3.4 via ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18744 (An XSS issue was discovered in SEMCMS 3.4 via the fifth text
box to the ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18743 (An XSS issue was discovered in SEMCMS 3.4 via the second text
field to ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18742 (A CSRF issue was discovered in SEMCMS 3.4 via the ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18741 (An XSS issue was discovered in SEMCMS 3.4 via ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18740 (An XSS issue was discovered in SEMCMS 3.4 via the first input
field to ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18739 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18738 (An XSS issue was discovered in SEMCMS 3.4 via the ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2018-18737 (An XXE issue was discovered in Douchat 4.0.4 because
Data\notify.php ...)
- TODO: check
+ NOT-FOR-US: Douchat
CVE-2018-18736 (An XSS issue was discovered in catfish blog 2.0.33, related to
"write ...)
- TODO: check
+ NOT-FOR-US: catfish blog (different from src:catfish)
CVE-2018-18735 (A CSRF issue was discovered in admin/Index/tiquan in catfish
blog ...)
- TODO: check
+ NOT-FOR-US: catfish blog (different from src:catfish)
CVE-2018-18734 (A CSRF issue was discovered in admin/Index/addmanageuser.html
in ...)
- TODO: check
+ NOT-FOR-US: Catfish CMS
CVE-2018-18733 (An XSS issue was discovered in Catfish CMS 4.8.30, related to
"write ...)
- TODO: check
+ NOT-FOR-US: Catfish CMS
CVE-2018-18732 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18731 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18730 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18729 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18728 (An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN,
AC15 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18727 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18726 (An XSS issue was discovered in
admin/sitelink/editsitelink?id=16 in ...)
- TODO: check
+ NOT-FOR-US: YUNUCMS
CVE-2018-18725 (An XSS issue was discovered in admin/banner/editbanner?id=20
in YUNUCMS ...)
- TODO: check
+ NOT-FOR-US: YUNUCMS
CVE-2018-18724 (An XSS issue was discovered in ...)
- TODO: check
+ NOT-FOR-US: YUNUCMS
CVE-2018-18723 (An XSS issue was discovered in
index.php/admin/area/editarea/id/110000 ...)
- TODO: check
+ NOT-FOR-US: YUNUCMS
CVE-2018-18722 (An XSS issue was discovered in
admin/content/editcontent?id=29&gopage=1 ...)
- TODO: check
+ NOT-FOR-US: YUNUCMS
CVE-2018-18721 (An XSS issue was discovered in admin/link/editlink?id=5 in
YUNUCMS ...)
- TODO: check
+ NOT-FOR-US: YUNUCMS
CVE-2018-18720 (An XSS issue was discovered in index.php/admin/system/basic in
YUNUCMS ...)
- TODO: check
+ NOT-FOR-US: YUNUCMS
CVE-2018-18719
RESERVED
CVE-2018-18718 (An issue was discovered in gThumb through 3.6.2. There is a
double-free ...)
TODO: check
CVE-2018-18717 (An issue was discovered in Eleanor CMS through 2015-03-19. XSS
exists ...)
- TODO: check
+ NOT-FOR-US: Eleanor CMS
CVE-2018-18716
RESERVED
CVE-2018-18715
@@ -73,19 +73,19 @@ CVE-2018-18715
CVE-2018-18714
RESERVED
CVE-2018-18713 (The function down_sql_action() in
/admin/model/database.class.php in ...)
- TODO: check
+ NOT-FOR-US: PHPYun
CVE-2018-18712 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF
...)
- TODO: check
+ NOT-FOR-US: WUZHI CMS
CVE-2018-18711 (An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF
...)
- TODO: check
+ NOT-FOR-US: WUZHI CMS
CVE-2018-18709 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18708 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18707 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2018-18706 (An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 ...)
- TODO: check
+ NOT-FOR-US: Tenda devices
CVE-2016-10734 (ProjectSend (formerly cFTP) r582 allows Insecure Direct Object
...)
TODO: check
CVE-2016-10733 (ProjectSend (formerly cFTP) r582 allows directory traversal
via ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/678ff378979cbf9390ff903ff2f1b85753e19468
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/678ff378979cbf9390ff903ff2f1b85753e19468
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
