From 4ab311ae7fde0d62ebf9a10d4cea012e8c7dd4a8 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 20 Mar 2019 20:00:43 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2018/20xxx/CVE-2018-20642.json | 48 ++++++++++++++++++++- 2018/20xxx/CVE-2018-20643.json | 48 ++++++++++++++++++++- 2018/20xxx/CVE-2018-20644.json | 48 ++++++++++++++++++++- 2018/20xxx/CVE-2018-20645.json | 48 ++++++++++++++++++++- 2018/20xxx/CVE-2018-20646.json | 48 ++++++++++++++++++++- 2018/20xxx/CVE-2018-20647.json | 48 ++++++++++++++++++++- 2018/20xxx/CVE-2018-20648.json | 48 ++++++++++++++++++++- 2019/3xxx/CVE-2019-3832.json | 78 +++++++++++++++++++++++++++++++--- 2019/7xxx/CVE-2019-7429.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7430.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7431.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7432.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7433.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7434.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7435.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7436.json | 48 ++++++++++++++++++++- 2019/7xxx/CVE-2019-7437.json | 48 ++++++++++++++++++++- 17 files changed, 807 insertions(+), 39 deletions(-) diff --git a/2018/20xxx/CVE-2018-20642.json b/2018/20xxx/CVE-2018-20642.json index 90cdaff941d..06a3f419522 100644 --- a/2018/20xxx/CVE-2018-20642.json +++ b/2018/20xxx/CVE-2018-20642.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20642", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 allows remote attackers to cause a denial of service (outage of profile editing) via crafted JavaScript code in the KeySkills field." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2018-20642-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2018-20642-vikas-chaudhary/" } ] } diff --git a/2018/20xxx/CVE-2018-20643.json b/2018/20xxx/CVE-2018-20643.json index 72ac4556999..74de0069eeb 100644 --- a/2018/20xxx/CVE-2018-20643.json +++ b/2018/20xxx/CVE-2018-20643.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20643", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Entrepreneur Job Portal Script 3.0.1 has directory traversal via a direct request for a listing of an image directory such as an assets/ directory." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2018-20643-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2018-20643-vikas-chaudhary/" } ] } diff --git a/2018/20xxx/CVE-2018-20644.json b/2018/20xxx/CVE-2018-20644.json index e5461490a07..8f574773035 100644 --- a/2018/20xxx/CVE-2018-20644.json +++ b/2018/20xxx/CVE-2018-20644.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20644", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Basic B2B Script 2.0.9 has Cross-Site Request Forgery (CSRF) via the Edit profile feature." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2018-20644-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2018-20644-vikas-chaudhary/" } ] } diff --git a/2018/20xxx/CVE-2018-20645.json b/2018/20xxx/CVE-2018-20645.json index 66557ecd3bb..9948d502b7d 100644 --- a/2018/20xxx/CVE-2018-20645.json +++ b/2018/20xxx/CVE-2018-20645.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20645", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Basic B2B Script 2.0.9 has HTML injection via the First Name or Last Name field." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2018-20645-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2018-20645-vikas-chaudhary/" } ] } diff --git a/2018/20xxx/CVE-2018-20646.json b/2018/20xxx/CVE-2018-20646.json index 173306f8764..c171e18180d 100644 --- a/2018/20xxx/CVE-2018-20646.json +++ b/2018/20xxx/CVE-2018-20646.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20646", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Basic B2B Script 2.0.9 has has directory traversal via a direct request for a listing of an image directory such as an uploads/ directory." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2018-20646-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2018-20646-vikas-chaudhary/" } ] } diff --git a/2018/20xxx/CVE-2018-20647.json b/2018/20xxx/CVE-2018-20647.json index 22aeec5ef77..295b978cf51 100644 --- a/2018/20xxx/CVE-2018-20647.json +++ b/2018/20xxx/CVE-2018-20647.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20647", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cvehttps://gkaim.com/cve-2018-20647-vikas-chaudhary/", + "url": "https://gkaim.com/cvehttps://gkaim.com/cve-2018-20647-vikas-chaudhary/" } ] } diff --git a/2018/20xxx/CVE-2018-20648.json b/2018/20xxx/CVE-2018-20648.json index 6e44c0824a3..603524b0b2d 100644 --- a/2018/20xxx/CVE-2018-20648.json +++ b/2018/20xxx/CVE-2018-20648.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-20648", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery (CSRF) via accountedit.php." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2018-20648-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2018-20648-vikas-chaudhary/" } ] } diff --git a/2019/3xxx/CVE-2019-3832.json b/2019/3xxx/CVE-2019-3832.json index 461721132c4..00846f2c235 100644 --- a/2019/3xxx/CVE-2019-3832.json +++ b/2019/3xxx/CVE-2019-3832.json @@ -1,18 +1,82 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2019-3832", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2019-3832", + "ASSIGNER": "secalert@redhat.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "[UNKNOWN]", + "product": { + "product_data": [ + { + "product_name": "libsndfile", + "version": { + "version_data": [ + { + "version_value": "NA" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-125" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3832", + "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3832", + "refsource": "CONFIRM" + }, + { + "url": "https://github.com/erikd/libsndfile/issues/456", + "name": "https://github.com/erikd/libsndfile/issues/456", + "refsource": "CONFIRM" + }, + { + "url": "https://github.com/erikd/libsndfile/pull/460", + "name": "https://github.com/erikd/libsndfile/pull/460", + "refsource": "CONFIRM" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "It was discovered the fix for CVE-2018-19758 (libsndfile) was not complete and still allows a read beyond the limits of a buffer in wav_write_header() function in wav.c. A local attacker may use this flaw to make the application crash." } ] + }, + "impact": { + "cvss": [ + [ + { + "vectorString": "3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", + "version": "3.0" + } + ] + ] } } \ No newline at end of file diff --git a/2019/7xxx/CVE-2019-7429.json b/2019/7xxx/CVE-2019-7429.json index 03250d5be7e..8562d2e2634 100644 --- a/2019/7xxx/CVE-2019-7429.json +++ b/2019/7xxx/CVE-2019-7429.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7429", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Property Rental Software 2.1.4 has directory traversal via a direct request for a listing of an uploads directory such as the wp-content/uploads/2016/08 directory." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7429-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7429-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7430.json b/2019/7xxx/CVE-2019-7430.json index 7eb1d096a77..a65c237e3bc 100644 --- a/2019/7xxx/CVE-2019-7430.json +++ b/2019/7xxx/CVE-2019-7430.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7430", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Image Sharing Script 1.3.4 has HTML injection via the Search Bar." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7430-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7430-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7431.json b/2019/7xxx/CVE-2019-7431.json index 07e77479179..78244bf3d66 100644 --- a/2019/7xxx/CVE-2019-7431.json +++ b/2019/7xxx/CVE-2019-7431.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7431", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Image Sharing Script 1.3.4 has directory traversal via a direct request for a listing of an uploads directory." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7431-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7431-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7432.json b/2019/7xxx/CVE-2019-7432.json index 8cc9c4d2ae5..0d5f70ba66f 100644 --- a/2019/7xxx/CVE-2019-7432.json +++ b/2019/7xxx/CVE-2019-7432.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7432", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Rental Bike Script 2.0.3 has HTML injection via the STREET field in the Profile Edit section." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7432-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7432-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7433.json b/2019/7xxx/CVE-2019-7433.json index 01fc6489a16..4ddb340b408 100644 --- a/2019/7xxx/CVE-2019-7433.json +++ b/2019/7xxx/CVE-2019-7433.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7433", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Rental Bike Script 2.0.3 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7433-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7433-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7434.json b/2019/7xxx/CVE-2019-7434.json index 88120ae31ea..1f6c0c1be25 100644 --- a/2019/7xxx/CVE-2019-7434.json +++ b/2019/7xxx/CVE-2019-7434.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7434", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7434-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7434-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7435.json b/2019/7xxx/CVE-2019-7435.json index f894e6ab25c..bf8e538c605 100644 --- a/2019/7xxx/CVE-2019-7435.json +++ b/2019/7xxx/CVE-2019-7435.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7435", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected HTML injection via the Search Form." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7435-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7435-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7436.json b/2019/7xxx/CVE-2019-7436.json index c0cacecf401..926c5559e65 100644 --- a/2019/7xxx/CVE-2019-7436.json +++ b/2019/7xxx/CVE-2019-7436.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7436", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct request for a listing of an uploads directory." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7436-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7436-vikas-chaudhary/" } ] } diff --git a/2019/7xxx/CVE-2019-7437.json b/2019/7xxx/CVE-2019-7437.json index 25e77100ae7..f9e6b545317 100644 --- a/2019/7xxx/CVE-2019-7437.json +++ b/2019/7xxx/CVE-2019-7437.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7437", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected Cross-Site Scripting (XSS) via the Search field." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://gkaim.com/cve-2019-7437-vikas-chaudhary/", + "url": "https://gkaim.com/cve-2019-7437-vikas-chaudhary/" } ] }