admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-08 05:58:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Synchronized data.

Browse Source
This commit is contained in:
CVE Team 2018-08-13 09:06:49 -04:00
parent d787e8741f
commit 33f01398c7
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
2 changed files with 39 additions and 33 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
2018/0xxx/CVE-2018-0714.json
View File

@ -35,7 +35,7 @@
"description_data" : [ "description_data" : [
{ {
"lang" : "eng", "lang" : "eng",
"value" : "Command injection vulnerability in Helpdesk versions 1.1.21 and earlier in QTS 4.2.6 build 20180531, QTS 4.3.3 build 20180528, QTS 4.3.4 build 20180528 and their earlier versions could allow remote attackers to run arbitrary commands in the compromised application." "value" : "Command injection vulnerability in Helpdesk versions 1.1.21 and earlier in QNAP QTS 4.2.6 build 20180531, QTS 4.3.3 build 20180528, QTS 4.3.4 build 20180528 and their earlier versions could allow remote attackers to run arbitrary commands in the compromised application."
} }
] ]
}, },
@ -54,6 +54,8 @@
"references" : { "references" : {
"reference_data" : [ "reference_data" : [
{ {
"name" : "https://www.qnap.com/zh-tw/security-advisory/nas-201808-13",
"refsource" : "CONFIRM",
"url" : "https://www.qnap.com/zh-tw/security-advisory/nas-201808-13" "url" : "https://www.qnap.com/zh-tw/security-advisory/nas-201808-13"
} }
] ]

68
2018/13xxx/CVE-2018-13392.json
View File

@ -1,64 +1,68 @@
{ {
"CVE_data_meta": { "CVE_data_meta" : {
"ASSIGNER": "security@atlassian.com", "ASSIGNER" : "security@atlassian.com",
"DATE_PUBLIC": "2018-08-13T00:00:00", "DATE_PUBLIC" : "2018-08-13T00:00:00",
"ID": "CVE-2018-13392", "ID" : "CVE-2018-13392",
"STATE": "PUBLIC" "STATE" : "PUBLIC"
}, },
"affects": { "affects" : {
"vendor": { "vendor" : {
"vendor_data": [ "vendor_data" : [
{ {
"product": { "product" : {
"product_data": [ "product_data" : [
{ {
"product_name": "Fisheye and Crucible", "product_name" : "Fisheye and Crucible",
"version": { "version" : {
"version_data": [ "version_data" : [
{ {
"version_value": "4.6.0", "version_affected" : "<",
"version_affected": "<" "version_value" : "4.6.0"
} }
] ]
} }
} }
] ]
}, },
"vendor_name": "Atlassian" "vendor_name" : "Atlassian"
} }
] ]
} }
}, },
"data_format": "MITRE", "data_format" : "MITRE",
"data_type": "CVE", "data_type" : "CVE",
"data_version": "4.0", "data_version" : "4.0",
"description": { "description" : {
"description_data": [ "description_data" : [
{ {
"lang": "eng", "lang" : "eng",
"value": "Several resources in Atlassian Fisheye and Crucible before version 4.6.0 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in linked issue keys." "value" : "Several resources in Atlassian Fisheye and Crucible before version 4.6.0 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in linked issue keys."
} }
] ]
}, },
"problemtype": { "problemtype" : {
"problemtype_data": [ "problemtype_data" : [
{ {
"description": [ "description" : [
{ {
"lang": "eng", "lang" : "eng",
"value": "Cross Site Scripting (XSS)" "value" : "Cross Site Scripting (XSS)"
} }
] ]
} }
] ]
}, },
"references": { "references" : {
"reference_data": [ "reference_data" : [
{ {
"url": "https://jira.atlassian.com/browse/FE-7081" "name" : "https://jira.atlassian.com/browse/CRUC-8304",
"refsource" : "CONFIRM",
"url" : "https://jira.atlassian.com/browse/CRUC-8304"
}, },
{ {
"url": "https://jira.atlassian.com/browse/CRUC-8304" "name" : "https://jira.atlassian.com/browse/FE-7081",
"refsource" : "CONFIRM",
"url" : "https://jira.atlassian.com/browse/FE-7081"
} }
] ]
} }