-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: spip
Version: 2.1.17-1+deb7u7
CVE ID : CVE-2016-9152
Debian Bug : 847156
It was discovered that there was a cross-site scripting (XSS) vulnerability in
spip, a website publishing engine, which allowed remote atta
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: roundcube
Version: 0.7.2-9+deb7u5
Debian Bug : 847287
It was discovered that there was a vulnerability where a remote user could
execute arbitrary commands in Roundcube, a webmail solution for IMAP
servers, by sending a
