From 3e2dfcbacad1ef1b7185424675bffe21c07468c8 Mon Sep 17 00:00:00 2001
From: CVE Team <cve-request@mitre.org>
Date: Fri, 12 Apr 2019 19:00:41 +0000
Subject: [PATCH] "-Synchronized-Data."

---
 2014/8xxx/CVE-2014-8114.json   |  5 ++++
 2018/0xxx/CVE-2018-0466.json   |  5 ++++
 2018/16xxx/CVE-2018-16257.json | 53 ++++++++++++++++++++++++++++++++--
 2018/16xxx/CVE-2018-16258.json | 53 ++++++++++++++++++++++++++++++++--
 2018/16xxx/CVE-2018-16259.json | 53 ++++++++++++++++++++++++++++++++--
 5 files changed, 163 insertions(+), 6 deletions(-)

diff --git a/2014/8xxx/CVE-2014-8114.json b/2014/8xxx/CVE-2014-8114.json
index ecff71fab72..ac790eb2e5d 100644
--- a/2014/8xxx/CVE-2014-8114.json
+++ b/2014/8xxx/CVE-2014-8114.json
@@ -66,6 +66,11 @@
                 "name": "https://github.com/uberfire/uberfire/commit/21ec50eb15",
                 "refsource": "CONFIRM",
                 "url": "https://github.com/uberfire/uberfire/commit/21ec50eb15"
+            },
+            {
+                "refsource": "BID",
+                "name": "88199",
+                "url": "http://www.securityfocus.com/bid/88199"
             }
         ]
     }
diff --git a/2018/0xxx/CVE-2018-0466.json b/2018/0xxx/CVE-2018-0466.json
index 535b49fe049..6f43a79c5e4 100644
--- a/2018/0xxx/CVE-2018-0466.json
+++ b/2018/0xxx/CVE-2018-0466.json
@@ -74,6 +74,11 @@
                 "name": "1041737",
                 "refsource": "SECTRACK",
                 "url": "http://www.securitytracker.com/id/1041737"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-094-03",
+                "url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-094-03"
             }
         ]
     },
diff --git a/2018/16xxx/CVE-2018-16257.json b/2018/16xxx/CVE-2018-16257.json
index 29b35958f6d..1fb514d6092 100644
--- a/2018/16xxx/CVE-2018-16257.json
+++ b/2018/16xxx/CVE-2018-16257.json
@@ -2,7 +2,30 @@
     "CVE_data_meta": {
         "ASSIGNER": "cve@mitre.org",
         "ID": "CVE-2018-16257",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
     },
     "data_format": "MITRE",
     "data_type": "CVE",
@@ -11,7 +34,33 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "There are multiple XSS vulnerabilities in WP All Import plugin 3.4.9 for WordPress via action=template."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://docs.google.com/document/d/1Lfk0YQMIhlMCOOvVRX8HkU6C50s9QSW7C-9gnNmzsHY/edit?usp=sharing",
+                "refsource": "MISC",
+                "name": "https://docs.google.com/document/d/1Lfk0YQMIhlMCOOvVRX8HkU6C50s9QSW7C-9gnNmzsHY/edit?usp=sharing"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://ansawaf.blogspot.com/2019/04/xss-in-import-any-xml-or-csv-file-for.html",
+                "url": "https://ansawaf.blogspot.com/2019/04/xss-in-import-any-xml-or-csv-file-for.html"
             }
         ]
     }
diff --git a/2018/16xxx/CVE-2018-16258.json b/2018/16xxx/CVE-2018-16258.json
index ebc906abb3d..de71336fded 100644
--- a/2018/16xxx/CVE-2018-16258.json
+++ b/2018/16xxx/CVE-2018-16258.json
@@ -2,7 +2,30 @@
     "CVE_data_meta": {
         "ASSIGNER": "cve@mitre.org",
         "ID": "CVE-2018-16258",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
     },
     "data_format": "MITRE",
     "data_type": "CVE",
@@ -11,7 +34,33 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-import custom_type."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://docs.google.com/document/d/1Lfk0YQMIhlMCOOvVRX8HkU6C50s9QSW7C-9gnNmzsHY/edit?usp=sharing",
+                "refsource": "MISC",
+                "name": "https://docs.google.com/document/d/1Lfk0YQMIhlMCOOvVRX8HkU6C50s9QSW7C-9gnNmzsHY/edit?usp=sharing"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://ansawaf.blogspot.com/2019/04/xss-in-import-any-xml-or-csv-file-for.html",
+                "url": "https://ansawaf.blogspot.com/2019/04/xss-in-import-any-xml-or-csv-file-for.html"
             }
         ]
     }
diff --git a/2018/16xxx/CVE-2018-16259.json b/2018/16xxx/CVE-2018-16259.json
index c22a88b9535..c810ad21f7b 100644
--- a/2018/16xxx/CVE-2018-16259.json
+++ b/2018/16xxx/CVE-2018-16259.json
@@ -2,7 +2,30 @@
     "CVE_data_meta": {
         "ASSIGNER": "cve@mitre.org",
         "ID": "CVE-2018-16259",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
     },
     "data_format": "MITRE",
     "data_type": "CVE",
@@ -11,7 +34,33 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-settings large_feed_limit."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://docs.google.com/document/d/1Lfk0YQMIhlMCOOvVRX8HkU6C50s9QSW7C-9gnNmzsHY/edit?usp=sharing",
+                "refsource": "MISC",
+                "name": "https://docs.google.com/document/d/1Lfk0YQMIhlMCOOvVRX8HkU6C50s9QSW7C-9gnNmzsHY/edit?usp=sharing"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://ansawaf.blogspot.com/2019/04/xss-in-import-any-xml-or-csv-file-for.html",
+                "url": "https://ansawaf.blogspot.com/2019/04/xss-in-import-any-xml-or-csv-file-for.html"
             }
         ]
     }