From 40286b50cd5505bf7f266d858d0e4d17cf143725 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Fri, 19 Jul 2019 06:00:52 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2019/13xxx/CVE-2019-13345.json | 5 +++ 2019/13xxx/CVE-2019-13969.json | 62 +++++++++++++++++++++++++++++ 2019/13xxx/CVE-2019-13970.json | 72 ++++++++++++++++++++++++++++++++++ 3 files changed, 139 insertions(+) create mode 100644 2019/13xxx/CVE-2019-13969.json create mode 100644 2019/13xxx/CVE-2019-13970.json diff --git a/2019/13xxx/CVE-2019-13345.json b/2019/13xxx/CVE-2019-13345.json index e94aceb6fb6..aa30cdc71db 100644 --- a/2019/13xxx/CVE-2019-13345.json +++ b/2019/13xxx/CVE-2019-13345.json @@ -76,6 +76,11 @@ "refsource": "UBUNTU", "name": "USN-4059-2", "url": "https://usn.ubuntu.com/4059-2/" + }, + { + "refsource": "BID", + "name": "109095", + "url": "http://www.securityfocus.com/bid/109095" } ] } diff --git a/2019/13xxx/CVE-2019-13969.json b/2019/13xxx/CVE-2019-13969.json new file mode 100644 index 00000000000..f9dc68e1baa --- /dev/null +++ b/2019/13xxx/CVE-2019-13969.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2019-13969", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Metinfo 6.x allows SQL Injection via the id parameter in an admin/index.php?n=ui_set&m=admin&c=index&a=doget_text_content&table=lang&field=1 request." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/zhuxianjin/vuln_repo/blob/master/Metinfo%206.x%20Background%20SQL%20injection.md", + "refsource": "MISC", + "name": "https://github.com/zhuxianjin/vuln_repo/blob/master/Metinfo%206.x%20Background%20SQL%20injection.md" + } + ] + } +} \ No newline at end of file diff --git a/2019/13xxx/CVE-2019-13970.json b/2019/13xxx/CVE-2019-13970.json new file mode 100644 index 00000000000..7c0ab6114bf --- /dev/null +++ b/2019/13xxx/CVE-2019-13970.json @@ -0,0 +1,72 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2019-13970", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "In antSword before 2.1.0, self-XSS in the database configuration leads to code execution via modules/database/asp/index.js, modules/database/custom/index.js, modules/database/index.js, or modules/database/php/index.js." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/AntSwordProject/antSword/issues/151", + "refsource": "MISC", + "name": "https://github.com/AntSwordProject/antSword/issues/151" + }, + { + "url": "https://github.com/AntSwordProject/antSword/commit/4b932e81447b4b0475f4fce45525547395c249d3", + "refsource": "MISC", + "name": "https://github.com/AntSwordProject/antSword/commit/4b932e81447b4b0475f4fce45525547395c249d3" + }, + { + "url": "https://github.com/AntSwordProject/antSword/compare/ed01dea...834063a", + "refsource": "MISC", + "name": "https://github.com/AntSwordProject/antSword/compare/ed01dea...834063a" + } + ] + } +} \ No newline at end of file