admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-10 02:04:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-07-30 10:01:40 +00:00
parent d710ad5572
commit 48f935339b
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
2 changed files with 12 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2018/1xxx/CVE-2018-1285.json
View File

@ -78,6 +78,11 @@
"refsource": "MLIST",
"name": "[logging-dev] 20200617 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"url": "https://lists.apache.org/thread.html/r6543acafca3e2d24ff4b0c364a91540cb9378977ffa8d37a03ab4b0f@%3Cdev.logging.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[logging-dev] 20200730 Re: [CVE-2018-1285] XXE vulnerability in Apache log4net",
"url": "https://lists.apache.org/thread.html/r7ab6b6e702f11a6f77b0db2af2d5e5532f56ae4b99b5fe73c5200b6a@%3Cdev.logging.apache.org%3E"
}
]
},

12
2020/7xxx/CVE-2020-7699.json
View File

@ -48,12 +48,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-595969"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-595969",
"name": "https://snyk.io/vuln/SNYK-JS-EXPRESSFILEUPLOAD-595969"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/richardgirges/express-fileupload/issues/236"
"refsource": "MISC",
"url": "https://github.com/richardgirges/express-fileupload/issues/236",
"name": "https://github.com/richardgirges/express-fileupload/issues/236"
}
]
},
@ -61,7 +63,7 @@
"description_data": [
{
"lang": "eng",
"value": "This affects the package express-fileupload before 1.1.8.\n If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution.\n"
"value": "This affects the package express-fileupload before 1.1.8. If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution."
}
]
},