diff options
| author | security tracker role <sectracker@soriano.debian.org> | 2020-02-08 20:10:21 +0000 |
|---|---|---|
| committer | security tracker role <sectracker@soriano.debian.org> | 2020-02-08 20:10:21 +0000 |
| commit | a136ab7dc92ad401be2b3037f7cf16e68b9ed3f1 (patch) | |
| tree | 09c6069321bf87e7bdc80541f80f269fa4c7eb27 /data/CVE/2014.list | |
| parent | 9af374078794e7e56a35a121ef1fcce185e38fcb (diff) | |
automatic update
Diffstat (limited to 'data/CVE/2014.list')
| -rw-r--r-- | data/CVE/2014.list | 23 |
1 files changed, 11 insertions, 12 deletions
diff --git a/data/CVE/2014.list b/data/CVE/2014.list index d5142491b8..0473fc6b1c 100644 --- a/data/CVE/2014.list +++ b/data/CVE/2014.list @@ -2907,8 +2907,8 @@ CVE-2014-9472 (The email gateway in RT (aka Request Tracker) 3.0.0 through 4.x b {DSA-3176-1 DLA-158-1} - request-tracker4 4.2.8-3 - request-tracker3.8 <removed> (unimportant) -CVE-2014-9470 - RESERVED +CVE-2014-9470 (Cross-site scripting (XSS) vulnerability in the loadForm function in F ...) + TODO: check CVE-2014-9469 (Cross-site scripting (XSS) vulnerability in vBulletin 3.5.4, 3.6.0, 3. ...) NOT-FOR-US: vBulletin CVE-2014-9468 (Multiple cross-site scripting (XSS) vulnerabilities in InstantASP Inst ...) @@ -3882,10 +3882,10 @@ CVE-2014-9131 RESERVED CVE-2014-9128 RESERVED -CVE-2014-9127 - RESERVED -CVE-2014-9126 - RESERVED +CVE-2014-9127 (Open-School Community Edition 2.2 does not properly restrict access to ...) + TODO: check +CVE-2014-9126 (Multiple cross-site scripting (XSS) vulnerabilities in Open-School Com ...) + TODO: check CVE-2014-9125 RESERVED CVE-2014-9124 @@ -4882,8 +4882,8 @@ CVE-2014-8741 (Directory traversal vulnerability in the GfdFileUploadServerlet s NOT-FOR-US: Lexmark CVE-2014-8740 RESERVED -CVE-2014-8739 - RESERVED +CVE-2014-8739 (Unrestricted file upload vulnerability in server/php/UploadHandler.php ...) + TODO: check CVE-2014-8736 (The Open Atrium Core module for Drupal before 7.x-2.22 allows remote a ...) NOT-FOR-US: Drupal module Open Atrium Core CVE-2014-8735 (The Bad Behavior module 6.x-2.x before 6.x-2.2216 and 7.x-2.x before 7 ...) @@ -7424,8 +7424,8 @@ CVE-2014-7865 REJECTED CVE-2014-7864 (Multiple SQL injection vulnerabilities in the FailOverHelperServlet (a ...) NOT-FOR-US: ZOHO ManageEngine OpManager -CVE-2014-7863 - RESERVED +CVE-2014-7863 (The FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngi ...) + TODO: check CVE-2014-7862 (The DCPluginServelet servlet in ManageEngine Desktop Central and Deskt ...) NOT-FOR-US: ManageEngine CVE-2014-7861 (The IOHIDSecurePromptClient function in Apple OS X does not properly v ...) @@ -21278,8 +21278,7 @@ CVE-2014-2227 (The default Flash cross-domain policy (crossdomain.xml) in Ubiqui NOT-FOR-US: Ubiquiti Networks CVE-2014-2226 (Ubiquiti UniFi Controller before 3.2.1 logs the administrative passwor ...) NOT-FOR-US: Ubiquiti Networks -CVE-2014-2225 - RESERVED +CVE-2014-2225 (Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti ...) NOT-FOR-US: Ubiquiti Networks CVE-2014-2224 (Plogger 1.0 RC1 and earlier, when the Lucid theme is used, does not as ...) NOT-FOR-US: Plogger |