Add CVE-2020-26934/phpmyadmin

author: Salvatore Bonaccorso <carnil@debian.org> 2020-10-10 22:35:09 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-10-10 22:35:09 +0200
commit: 7060e935845f24b9009fa58373e4b51fe826c1e7 (patch)
tree: a363e0939cbf157a8636d1a4e94e21219be6e8e1 /data
parent: bf32971e1cd45ed5e286607648b9c75c89993700 (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 89d2da4d5c..f790e2c059 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -15,7 +15,9 @@ CVE-2020-26935 (An issue was discovered in SearchController in phpMyAdmin before
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2020-6/
 	NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/d09ab9bc9d634ad08b866d42bb8c4109869d38d2
 CVE-2020-26934 (phpMyAdmin before 4.9.6 and 5.x before 5.0.3 allows XSS through the tr ...)
-	TODO: check
+	- phpmyadmin <unfixed>
+	NOTE: https://www.phpmyadmin.net/security/PMASA-2020-5/
+	NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/19df63b0365621427697edc185ff7c9c5707c523
 CVE-2020-26933
 	RESERVED
 CVE-2020-26931 (Certain NETGEAR devices are affected by disclosure of sensitive inform ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-10-10 22:35:09 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-10-10 22:35:09 +0200
commit	7060e935845f24b9009fa58373e4b51fe826c1e7 (patch)
tree	a363e0939cbf157a8636d1a4e94e21219be6e8e1 /data
parent	bf32971e1cd45ed5e286607648b9c75c89993700 (diff)