Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ef6bbecc by Salvatore Bonaccorso at 2023-08-01T09:38:30+02:00
Process some NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -53,41 +53,41 @@ CVE-2023-38304 (An issue was discovered in Webmin 2.021. A
Stored Cross-Site Scr
CVE-2023-38303 (An issue was discovered in Webmin 2.021. One can exploit a
stored Cros ...)
- webmin <removed>
CVE-2023-37771 (Art Gallery Management System v1.0 contains a SQL injection
vulnerabil ...)
- TODO: check
+ NOT-FOR-US: Art Gallery Management System
CVE-2023-37647 (SEMCMS v1.5 was discovered to contain a SQL injection
vulnerability vi ...)
- TODO: check
+ NOT-FOR-US: SEMCMS
CVE-2023-37580 (Zimbra Collaboration (ZCS) 8 before 8.8.15 Patch 41 allows XSS
in the ...)
- TODO: check
+ NOT-FOR-US: Zimbra
CVE-2023-36092 (Authentication Bypass vulnerability in D-Link DIR-859 FW105b03
allows ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2023-36091 (Authentication Bypass vulnerability in D-Link DIR-895 FW102b07
allows ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2023-36090 (Authentication Bypass vulnerability in D-Link DIR-885L
FW102b01 allows ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2023-36089 (Authentication Bypass vulnerability in D-Link DIR-645 firmware
version ...)
- TODO: check
+ NOT-FOR-US: D-Link
CVE-2023-35861 (A shell-injection vulnerability in email notifications on
Supermicro m ...)
TODO: check
CVE-2023-35792 (Vound Intella Connect 2.6.0.3 is vulnerable to stored
Cross-site Scrip ...)
- TODO: check
+ NOT-FOR-US: Vound Intella Connect
CVE-2023-35791 (Vound Intella Connect 2.6.0.3 has an Open Redirect
vulnerability.)
- TODO: check
+ NOT-FOR-US: Vound Intella Connect
CVE-2023-34917 (Fuge CMS v1.0 contains an Open Redirect vulnerability in
member/Regist ...)
- TODO: check
+ NOT-FOR-US: Fuge CMS
CVE-2023-34916 (Fuge CMS v1.0 contains an Open Redirect vulnerability via
/front/Proce ...)
- TODO: check
+ NOT-FOR-US: Fuge CMS
CVE-2023-34872 (A vulnerability in Outline.cc for Poppler prior to 23.06.0
allows a re ...)
TODO: check
CVE-2023-34842 (Remote Code Execution vulnerability in DedeCMS through 5.7.109
allows ...)
- TODO: check
+ NOT-FOR-US: DedeCMS
CVE-2023-34644 (Remote code execution vulnerability in Ruijie Networks
Product: RG-EW ...)
- TODO: check
+ NOT-FOR-US: Ruijie
CVE-2023-34635 (Wifi Soft Unibox Administration 3.0 and 3.1 is vulnerable to
SQL Injec ...)
- TODO: check
+ NOT-FOR-US: Wifi Soft Unibox Administration
CVE-2023-33534 (A Cross-Site Request Forgery (CSRF) in Guanzhou Tozed Kangwei
Intellig ...)
TODO: check
CVE-2020-36763 (Cross Site Scripting (XSS) vulnerability in DuxCMS 2.1 allows
remote a ...)
- TODO: check
+ NOT-FOR-US: DuxCMS
CVE-2023-4007 (Cross-site Scripting (XSS) - Stored in GitHub repository
thorsten/phpm ...)
NOT-FOR-US: phpmyfaq
CVE-2023-4006 (Improper Neutralization of Formula Elements in a CSV File in
GitHub re ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef6bbecc18651f1212d1bce34aff0f50fab13383
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ef6bbecc18651f1212d1bce34aff0f50fab13383
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
