From 97d4acf4990ed1f1e77ba2d58e1e18056631064c Mon Sep 17 00:00:00 2001
From: security tracker role <sectracker@soriano.debian.org>
Date: Sun, 9 Aug 2020 20:10:22 +0000
Subject: automatic update

---
 data/CVE/2020.list | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index c1e6e83095..aaf7125408 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -1,3 +1,19 @@
+CVE-2020-17453
+	RESERVED
+CVE-2020-17452 (flatCore before 1.5.7 allows upload and execution of a .php file by an ...)
+	TODO: check
+CVE-2020-17451 (flatCore before 1.5.7 allows XSS by an admin via the acp/acp.php?tn=pa ...)
+	TODO: check
+CVE-2020-17450
+	RESERVED
+CVE-2020-17449
+	RESERVED
+CVE-2020-17448
+	RESERVED
+CVE-2020-17447 (MyBB before 1.8.24 allows XSS because the visual editor mishandles [al ...)
+	TODO: check
+CVE-2020-17446
+	RESERVED
 CVE-2020-17445
 	RESERVED
 CVE-2020-17444
@@ -2407,8 +2423,7 @@ CVE-2020-16250
 	RESERVED
 CVE-2020-16249
 	RESERVED
-CVE-2020-16248
-	RESERVED
+CVE-2020-16248 (** DISPUTED ** Prometheus Blackbox Exporter through 0.17.0 allows /pro ...)
 	- prometheus-blackbox-exporter <unfixed> (unimportant)
 	NOTE: https://github.com/prometheus/blackbox_exporter/issues/669
 	NOTE: https://www.openwall.com/lists/oss-security/2020/08/08/12
-- 
cgit v1.2.3