Henri Salo pushed to branch master at Debian Security Tracker / security-tracker
Commits: fa0979bf by Henri Salo at 2019-04-30T08:20:07Z NFU - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -40941,17 +40941,17 @@ CVE-2003-1605 (curl 7.x before 7.10.7 sends CONNECT proxy credentials to the rem - curl 7.10.7-1 NOTE: https://curl.haxx.se/docs/CVE-2003-1605.html CVE-2018-15585 (Cross-Site Scripting (XSS) vulnerability in newwinform.php in GNUBOARD ...) - NOT-FOR-US: GNUBOARD + NOT-FOR-US: GNU Board CVE-2018-15584 (Cross-Site Scripting (XSS) vulnerability in adm/boardgroup_form_update ...) - NOT-FOR-US: Gnuboard + NOT-FOR-US: GNU Board CVE-2018-15583 (Cross-Site Scripting (XSS) vulnerability in point_list.php in GNUBOARD ...) - NOT-FOR-US: GNUBOARD + NOT-FOR-US: GNU Board CVE-2018-15582 (Cross-Site Scripting (XSS) vulnerability in adm/sms_admin/num_book_wri ...) - NOT-FOR-US: Gnuboard + NOT-FOR-US: GNU Board CVE-2018-15581 (Cross-Site Scripting (XSS) vulnerability in adm/faqmasterformupdate.ph ...) - NOT-FOR-US: Gnuboard + NOT-FOR-US: GNU Board CVE-2018-15580 (Cross-Site Scripting (XSS) vulnerability in adm/contentformupdate.php ...) - NOT-FOR-US: Gnuboard + NOT-FOR-US: GNU Board CVE-2018-15579 RESERVED CVE-2018-15578 @@ -211093,7 +211093,7 @@ CVE-2014-2341 (Session fixation vulnerability in CubeCart before 5.2.9 allows re CVE-2014-2340 (Cross-site request forgery (CSRF) vulnerability in the XCloner plugin ...) NOT-FOR-US: WordPress plugin xcloner-backup-and-restore CVE-2014-2339 (Multiple SQL injection vulnerabilities in bbs/ajax.autosave.php in GNU ...) - NOT-FOR-US: GnuBoard + NOT-FOR-US: GNU Board CVE-2014-2338 (IKEv2 in strongSwan 4.0.7 before 5.1.3 allows remote attackers to bypa ...) {DSA-2903-1} - strongswan 5.1.2-4 @@ -241369,7 +241369,7 @@ CVE-2012-4875 CVE-2012-4874 (Unspecified vulnerability in the Another WordPress Classifieds Plugin ...) NOT-FOR-US: Another WordPress Classifieds Plugin for Wordpress CVE-2012-4873 (Cross-site scripting (XSS) vulnerability in the file_download function ...) - NOT-FOR-US: GNUBoard + NOT-FOR-US: GNU Board CVE-2012-4872 (Cross-site scripting (XSS) vulnerability in Tickets/Submit in Kayako F ...) NOT-FOR-US: Kayako Fusion CVE-2012-4871 (Cross-site scripting (XSS) vulnerability in service/graph_html.php in ...) @@ -256981,7 +256981,7 @@ CVE-2011-4068 (The check_password function in html/admin/login.php in PacketFenc CVE-2011-4067 RESERVED CVE-2011-4066 (SQL injection vulnerability in bbs/tb.php in Gnuboard 4.33.02 and earl ...) - NOT-FOR-US: Gnuboard + NOT-FOR-US: GNU Board CVE-2011-4065 RESERVED CVE-2011-4063 (chan_sip.c in the SIP channel driver in Asterisk Open Source 1.8.x bef ...) @@ -297107,7 +297107,7 @@ CVE-2009-0292 (SQL injection vulnerability in show_cat2.php in SHOP-INET 4 allow CVE-2009-0291 (Directory traversal vulnerability in fc.php in OpenX 2.6.3 allows remo ...) - openx <itp> (bug #513771) CVE-2009-0290 (Directory traversal vulnerability in common.php in SIR GNUBoard 4.31.0 ...) - NOT-FOR-US: GNUBoard + NOT-FOR-US: GNU Board CVE-2009-0289 (k23productions TFTPUtil GUI 1.2.0 and 1.3.0 allows remote attackers to ...) NOT-FOR-US: k23productions TFTPUtil GUI CVE-2009-0288 (Directory traversal vulnerability in k23productions TFTPUtil GUI 1.2.0 ...) @@ -361182,7 +361182,7 @@ CVE-2004-1405 (MediaWiki 1.3.8 and earlier, when used with Apache mod_mime, does CVE-2004-1404 (Attachment Mod 2.3.10 module for phpBB, when used with Apache mod_mime ...) NOT-FOR-US: Attachment Mod for phpBB CVE-2004-1403 (PHP remote file inclusion vulnerability in index.php in GNUBoard 3.39 ...) - NOT-FOR-US: GNUBoard + NOT-FOR-US: GNU Board CVE-2004-1402 (SQL injection vulnerability in iWebNegar allows remote attackers to ex ...) NOT-FOR-US: iWebNegar CVE-2004-1401 (SQL injection vulnerability in verify.asp in Asp-rider allows remote a ...) @@ -361371,7 +361371,7 @@ CVE-2005-0271 (Multiple SQL injection vulnerabilities in ReviewPost PHP Pro befo CVE-2005-0270 (Multiple cross-site scripting (XSS) vulnerabilities in ReviewPost PHP ...) NOT-FOR-US: ReviewPost CVE-2005-0269 (The file extension check in GNUBoard 3.40 and earlier only verifies ex ...) - NOT-FOR-US: GNUBoard + NOT-FOR-US: GNU Board CVE-2005-0268 (Direct code injection vulnerability in FlatNuke 2.5.1 allows remote at ...) NOT-FOR-US: FlatNuke CVE-2005-0267 (index.php in FlatNuke 2.5.1 allows remote attackers to create an admin ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa0979bf0540e2605941b266da89b91be0b79e6b -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa0979bf0540e2605941b266da89b91be0b79e6b You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits