diff --git a/2019/12xxx/CVE-2019-12255.json b/2019/12xxx/CVE-2019-12255.json index 8d5a1f3d5f9..6615719d8c6 100644 --- a/2019/12xxx/CVE-2019-12255.json +++ b/2019/12xxx/CVE-2019-12255.json @@ -34,7 +34,7 @@ "description_data": [ { "lang": "eng", - "value": "Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow." + "value": "Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow." } ] }, diff --git a/2019/13xxx/CVE-2019-13025.json b/2019/13xxx/CVE-2019-13025.json new file mode 100644 index 00000000000..daee000979b --- /dev/null +++ b/2019/13xxx/CVE-2019-13025.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2019-13025", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Compal CH7465LG CH7465LG-NCIP-6.12.18.24-5p8-NOSH devices have Incorrect Access Control because of Improper Input Validation. The attacker can send a maliciously modified POST (HTTP) request containing shell commands, which will be executed on the device, to an backend API endpoint of the cable modem." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://xitan.me/posts/connect-box-ch7465lg-rce/", + "url": "https://xitan.me/posts/connect-box-ch7465lg-rce/" + } + ] + } +} \ No newline at end of file diff --git a/2019/4xxx/CVE-2019-4520.json b/2019/4xxx/CVE-2019-4520.json index d1a5727541e..bd13b9a6e36 100644 --- a/2019/4xxx/CVE-2019-4520.json +++ b/2019/4xxx/CVE-2019-4520.json @@ -1,90 +1,90 @@ { - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "value" : "IBM Security Directory Server 6.4.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 165178.", - "lang" : "eng" - } - ] - }, - "CVE_data_meta" : { - "STATE" : "PUBLIC", - "DATE_PUBLIC" : "2019-10-01T00:00:00", - "ASSIGNER" : "psirt@us.ibm.com", - "ID" : "CVE-2019-4520" - }, - "data_format" : "MITRE", - "references" : { - "reference_data" : [ - { - "refsource" : "CONFIRM", - "title" : "IBM Security Bulletin 1077045 (Security Directory Server)", - "name" : "https://www.ibm.com/support/pages/node/1077045", - "url" : "https://www.ibm.com/support/pages/node/1077045" - }, - { - "refsource" : "XF", - "name" : "ibm-sds-cve20194520-info-disc (165178)", - "title" : "X-Force Vulnerability Report", - "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/165178" - } - ] - }, - "affects" : { - "vendor" : { - "vendor_data" : [ + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ { - "vendor_name" : "IBM", - "product" : { - "product_data" : [ - { - "product_name" : "Security Directory Server", - "version" : { - "version_data" : [ - { - "version_value" : "6.4.0" - } - ] - } - } - ] - } + "value": "IBM Security Directory Server 6.4.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 165178.", + "lang": "eng" } - ] - } - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "value" : "Obtain Information", - "lang" : "eng" - } + ] + }, + "CVE_data_meta": { + "STATE": "PUBLIC", + "DATE_PUBLIC": "2019-10-01T00:00:00", + "ASSIGNER": "psirt@us.ibm.com", + "ID": "CVE-2019-4520" + }, + "data_format": "MITRE", + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "title": "IBM Security Bulletin 1077045 (Security Directory Server)", + "name": "https://www.ibm.com/support/pages/node/1077045", + "url": "https://www.ibm.com/support/pages/node/1077045" + }, + { + "refsource": "XF", + "name": "ibm-sds-cve20194520-info-disc (165178)", + "title": "X-Force Vulnerability Report", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/165178" + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "product_name": "Security Directory Server", + "version": { + "version_data": [ + { + "version_value": "6.4.0" + } + ] + } + } + ] + } + } ] - } - ] - }, - "impact" : { - "cvssv3" : { - "TM" : { - "RC" : "C", - "RL" : "O", - "E" : "U" - }, - "BM" : { - "AC" : "L", - "SCORE" : "7.500", - "UI" : "N", - "PR" : "N", - "A" : "N", - "I" : "N", - "AV" : "N", - "S" : "U", - "C" : "H" - } - } - } -} + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "value": "Obtain Information", + "lang": "eng" + } + ] + } + ] + }, + "impact": { + "cvssv3": { + "TM": { + "RC": "C", + "RL": "O", + "E": "U" + }, + "BM": { + "AC": "L", + "SCORE": "7.500", + "UI": "N", + "PR": "N", + "A": "N", + "I": "N", + "AV": "N", + "S": "U", + "C": "H" + } + } + } +} \ No newline at end of file diff --git a/2019/4xxx/CVE-2019-4538.json b/2019/4xxx/CVE-2019-4538.json index 92d90264549..19dd3f7b59d 100644 --- a/2019/4xxx/CVE-2019-4538.json +++ b/2019/4xxx/CVE-2019-4538.json @@ -1,90 +1,90 @@ { - "description" : { - "description_data" : [ - { - "value" : "IBM Security Directory Server 6.4.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 165660.", - "lang" : "eng" - } - ] - }, - "data_version" : "4.0", - "CVE_data_meta" : { - "STATE" : "PUBLIC", - "DATE_PUBLIC" : "2019-10-01T00:00:00", - "ID" : "CVE-2019-4538", - "ASSIGNER" : "psirt@us.ibm.com" - }, - "data_type" : "CVE", - "impact" : { - "cvssv3" : { - "TM" : { - "E" : "U", - "RL" : "O", - "RC" : "C" - }, - "BM" : { - "PR" : "N", - "A" : "N", - "I" : "H", - "AV" : "N", - "S" : "C", - "C" : "N", - "AC" : "L", - "SCORE" : "7.400", - "UI" : "R" - } - } - }, - "references" : { - "reference_data" : [ - { - "url" : "https://www.ibm.com/support/pages/node/1077045", - "name" : "https://www.ibm.com/support/pages/node/1077045", - "title" : "IBM Security Bulletin 1077045 (Security Directory Server)", - "refsource" : "CONFIRM" - }, - { - "refsource" : "XF", - "title" : "X-Force Vulnerability Report", - "name" : "ibm-sds-cve20194538-open-redirect (165660)", - "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/165660" - } - ] - }, - "data_format" : "MITRE", - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "Gain Access" - } - ] - } - ] - }, - "affects" : { - "vendor" : { - "vendor_data" : [ + "description": { + "description_data": [ { - "product" : { - "product_data" : [ - { - "product_name" : "Security Directory Server", - "version" : { - "version_data" : [ - { - "version_value" : "6.4.0" - } - ] - } - } - ] - }, - "vendor_name" : "IBM" + "value": "IBM Security Directory Server 6.4.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 165660.", + "lang": "eng" } - ] - } - } -} + ] + }, + "data_version": "4.0", + "CVE_data_meta": { + "STATE": "PUBLIC", + "DATE_PUBLIC": "2019-10-01T00:00:00", + "ID": "CVE-2019-4538", + "ASSIGNER": "psirt@us.ibm.com" + }, + "data_type": "CVE", + "impact": { + "cvssv3": { + "TM": { + "E": "U", + "RL": "O", + "RC": "C" + }, + "BM": { + "PR": "N", + "A": "N", + "I": "H", + "AV": "N", + "S": "C", + "C": "N", + "AC": "L", + "SCORE": "7.400", + "UI": "R" + } + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.ibm.com/support/pages/node/1077045", + "name": "https://www.ibm.com/support/pages/node/1077045", + "title": "IBM Security Bulletin 1077045 (Security Directory Server)", + "refsource": "CONFIRM" + }, + { + "refsource": "XF", + "title": "X-Force Vulnerability Report", + "name": "ibm-sds-cve20194538-open-redirect (165660)", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/165660" + } + ] + }, + "data_format": "MITRE", + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Gain Access" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Security Directory Server", + "version": { + "version_data": [ + { + "version_value": "6.4.0" + } + ] + } + } + ] + }, + "vendor_name": "IBM" + } + ] + } + } +} \ No newline at end of file diff --git a/2019/4xxx/CVE-2019-4539.json b/2019/4xxx/CVE-2019-4539.json index 4c6bf0a5dbb..831d5b06705 100644 --- a/2019/4xxx/CVE-2019-4539.json +++ b/2019/4xxx/CVE-2019-4539.json @@ -1,90 +1,90 @@ { - "impact" : { - "cvssv3" : { - "BM" : { - "PR" : "L", - "A" : "H", - "I" : "L", - "AV" : "N", - "S" : "U", - "C" : "N", - "AC" : "L", - "SCORE" : "7.100", - "UI" : "N" - }, - "TM" : { - "E" : "U", - "RC" : "C", - "RL" : "O" - } - } - }, - "data_format" : "MITRE", - "references" : { - "reference_data" : [ - { - "name" : "https://www.ibm.com/support/pages/node/1077045", - "title" : "IBM Security Bulletin 1077045 (Security Directory Server)", - "refsource" : "CONFIRM", - "url" : "https://www.ibm.com/support/pages/node/1077045" - }, - { - "refsource" : "XF", - "name" : "ibm-sds-cve20194539-xml-injection (165812)", - "title" : "X-Force Vulnerability Report", - "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/165812" - } - ] - }, - "affects" : { - "vendor" : { - "vendor_data" : [ - { - "vendor_name" : "IBM", - "product" : { - "product_data" : [ - { - "product_name" : "Security Directory Server", - "version" : { - "version_data" : [ - { - "version_value" : "6.4.0" - } - ] - } - } - ] - } + "impact": { + "cvssv3": { + "BM": { + "PR": "L", + "A": "H", + "I": "L", + "AV": "N", + "S": "U", + "C": "N", + "AC": "L", + "SCORE": "7.100", + "UI": "N" + }, + "TM": { + "E": "U", + "RC": "C", + "RL": "O" } - ] - } - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "Denial of Service" - } + } + }, + "data_format": "MITRE", + "references": { + "reference_data": [ + { + "name": "https://www.ibm.com/support/pages/node/1077045", + "title": "IBM Security Bulletin 1077045 (Security Directory Server)", + "refsource": "CONFIRM", + "url": "https://www.ibm.com/support/pages/node/1077045" + }, + { + "refsource": "XF", + "name": "ibm-sds-cve20194539-xml-injection (165812)", + "title": "X-Force Vulnerability Report", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/165812" + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "product_name": "Security Directory Server", + "version": { + "version_data": [ + { + "version_value": "6.4.0" + } + ] + } + } + ] + } + } ] - } - ] - }, - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "value" : "IBM Security Directory Server 6.4.0 does not properly neutralize special elements that are used in XML, allowing attackers to modify the syntax, content, or commands of the XML before it is processed by an end system. IBM X-Force ID: 165812.", - "lang" : "eng" - } - ] - }, - "CVE_data_meta" : { - "DATE_PUBLIC" : "2019-10-01T00:00:00", - "STATE" : "PUBLIC", - "ASSIGNER" : "psirt@us.ibm.com", - "ID" : "CVE-2019-4539" - }, - "data_type" : "CVE" -} + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Denial of Service" + } + ] + } + ] + }, + "data_version": "4.0", + "description": { + "description_data": [ + { + "value": "IBM Security Directory Server 6.4.0 does not properly neutralize special elements that are used in XML, allowing attackers to modify the syntax, content, or commands of the XML before it is processed by an end system. IBM X-Force ID: 165812.", + "lang": "eng" + } + ] + }, + "CVE_data_meta": { + "DATE_PUBLIC": "2019-10-01T00:00:00", + "STATE": "PUBLIC", + "ASSIGNER": "psirt@us.ibm.com", + "ID": "CVE-2019-4539" + }, + "data_type": "CVE" +} \ No newline at end of file diff --git a/2019/4xxx/CVE-2019-4542.json b/2019/4xxx/CVE-2019-4542.json index b0e3b4908bb..e596f6e6ed9 100644 --- a/2019/4xxx/CVE-2019-4542.json +++ b/2019/4xxx/CVE-2019-4542.json @@ -1,90 +1,90 @@ { - "CVE_data_meta" : { - "DATE_PUBLIC" : "2019-10-01T00:00:00", - "STATE" : "PUBLIC", - "ASSIGNER" : "psirt@us.ibm.com", - "ID" : "CVE-2019-4542" - }, - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "lang" : "eng", - "value" : "IBM Security Directory Server 6.4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 165815." - } - ] - }, - "data_type" : "CVE", - "impact" : { - "cvssv3" : { - "BM" : { - "PR" : "N", - "A" : "N", - "I" : "L", - "AV" : "N", - "S" : "C", - "C" : "L", - "AC" : "L", - "SCORE" : "6.100", - "UI" : "R" - }, - "TM" : { - "E" : "H", - "RL" : "O", - "RC" : "C" - } - } - }, - "affects" : { - "vendor" : { - "vendor_data" : [ + "CVE_data_meta": { + "DATE_PUBLIC": "2019-10-01T00:00:00", + "STATE": "PUBLIC", + "ASSIGNER": "psirt@us.ibm.com", + "ID": "CVE-2019-4542" + }, + "data_version": "4.0", + "description": { + "description_data": [ { - "vendor_name" : "IBM", - "product" : { - "product_data" : [ - { - "version" : { - "version_data" : [ - { - "version_value" : "6.4.0" - } - ] - }, - "product_name" : "Security Directory Server" - } - ] - } + "lang": "eng", + "value": "IBM Security Directory Server 6.4.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 165815." } - ] - } - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "Cross-Site Scripting" - } + ] + }, + "data_type": "CVE", + "impact": { + "cvssv3": { + "BM": { + "PR": "N", + "A": "N", + "I": "L", + "AV": "N", + "S": "C", + "C": "L", + "AC": "L", + "SCORE": "6.100", + "UI": "R" + }, + "TM": { + "E": "H", + "RL": "O", + "RC": "C" + } + } + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "version": { + "version_data": [ + { + "version_value": "6.4.0" + } + ] + }, + "product_name": "Security Directory Server" + } + ] + } + } ] - } - ] - }, - "data_format" : "MITRE", - "references" : { - "reference_data" : [ - { - "url" : "https://www.ibm.com/support/pages/node/1077045", - "title" : "IBM Security Bulletin 1077045 (Security Directory Server)", - "name" : "https://www.ibm.com/support/pages/node/1077045", - "refsource" : "CONFIRM" - }, - { - "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/165815", - "refsource" : "XF", - "name" : "ibm-sds-cve20194542-xss (165815)", - "title" : "X-Force Vulnerability Report" - } - ] - } -} + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Cross-Site Scripting" + } + ] + } + ] + }, + "data_format": "MITRE", + "references": { + "reference_data": [ + { + "url": "https://www.ibm.com/support/pages/node/1077045", + "title": "IBM Security Bulletin 1077045 (Security Directory Server)", + "name": "https://www.ibm.com/support/pages/node/1077045", + "refsource": "CONFIRM" + }, + { + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/165815", + "refsource": "XF", + "name": "ibm-sds-cve20194542-xss (165815)", + "title": "X-Force Vulnerability Report" + } + ] + } +} \ No newline at end of file diff --git a/2019/4xxx/CVE-2019-4549.json b/2019/4xxx/CVE-2019-4549.json index fb91100c528..1e688283bf7 100644 --- a/2019/4xxx/CVE-2019-4549.json +++ b/2019/4xxx/CVE-2019-4549.json @@ -1,90 +1,90 @@ { - "data_type" : "CVE", - "description" : { - "description_data" : [ - { - "value" : "IBM Security Directory Server 6.4.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 165951.", - "lang" : "eng" - } - ] - }, - "data_version" : "4.0", - "CVE_data_meta" : { - "ID" : "CVE-2019-4549", - "ASSIGNER" : "psirt@us.ibm.com", - "DATE_PUBLIC" : "2019-10-01T00:00:00", - "STATE" : "PUBLIC" - }, - "references" : { - "reference_data" : [ - { - "title" : "IBM Security Bulletin 1077045 (Security Directory Server)", - "name" : "https://www.ibm.com/support/pages/node/1077045", - "refsource" : "CONFIRM", - "url" : "https://www.ibm.com/support/pages/node/1077045" - }, - { - "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/165951", - "refsource" : "XF", - "name" : "ibm-sds-cve20194549-info-disc (165951)", - "title" : "X-Force Vulnerability Report" - } - ] - }, - "data_format" : "MITRE", - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "Obtain Information" - } - ] - } - ] - }, - "affects" : { - "vendor" : { - "vendor_data" : [ + "data_type": "CVE", + "description": { + "description_data": [ { - "vendor_name" : "IBM", - "product" : { - "product_data" : [ - { - "product_name" : "Security Directory Server", - "version" : { - "version_data" : [ - { - "version_value" : "6.4.0" - } - ] - } - } - ] - } + "value": "IBM Security Directory Server 6.4.0 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 165951.", + "lang": "eng" } - ] - } - }, - "impact" : { - "cvssv3" : { - "TM" : { - "E" : "U", - "RC" : "C", - "RL" : "O" - }, - "BM" : { - "UI" : "N", - "SCORE" : "5.300", - "AC" : "L", - "S" : "U", - "C" : "L", - "AV" : "N", - "I" : "N", - "PR" : "N", - "A" : "N" - } - } - } -} + ] + }, + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2019-4549", + "ASSIGNER": "psirt@us.ibm.com", + "DATE_PUBLIC": "2019-10-01T00:00:00", + "STATE": "PUBLIC" + }, + "references": { + "reference_data": [ + { + "title": "IBM Security Bulletin 1077045 (Security Directory Server)", + "name": "https://www.ibm.com/support/pages/node/1077045", + "refsource": "CONFIRM", + "url": "https://www.ibm.com/support/pages/node/1077045" + }, + { + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/165951", + "refsource": "XF", + "name": "ibm-sds-cve20194549-info-disc (165951)", + "title": "X-Force Vulnerability Report" + } + ] + }, + "data_format": "MITRE", + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Obtain Information" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "product_name": "Security Directory Server", + "version": { + "version_data": [ + { + "version_value": "6.4.0" + } + ] + } + } + ] + } + } + ] + } + }, + "impact": { + "cvssv3": { + "TM": { + "E": "U", + "RC": "C", + "RL": "O" + }, + "BM": { + "UI": "N", + "SCORE": "5.300", + "AC": "L", + "S": "U", + "C": "L", + "AV": "N", + "I": "N", + "PR": "N", + "A": "N" + } + } + } +} \ No newline at end of file diff --git a/2019/8xxx/CVE-2019-8288.json b/2019/8xxx/CVE-2019-8288.json index 63b12603262..4fa4ceb84d3 100644 --- a/2019/8xxx/CVE-2019-8288.json +++ b/2019/8xxx/CVE-2019-8288.json @@ -11,6 +11,11 @@ "url": "https://www.abcprintf.com/view_download.php?id=17", "refsource": "MISC", "name": "https://www.abcprintf.com/view_download.php?id=17" + }, + { + "refsource": "MLIST", + "name": "[oss-security] 20191002 Multiple vulnerabilities in Online store system v1.0 Stored XSS and unauthenticated product deletions.", + "url": "http://www.openwall.com/lists/oss-security/2019/10/02/1" } ] }, diff --git a/2019/8xxx/CVE-2019-8289.json b/2019/8xxx/CVE-2019-8289.json index e09e43d078c..44b1bf595c6 100644 --- a/2019/8xxx/CVE-2019-8289.json +++ b/2019/8xxx/CVE-2019-8289.json @@ -11,6 +11,11 @@ "url": "https://www.abcprintf.com/view_download.php?id=17", "refsource": "MISC", "name": "https://www.abcprintf.com/view_download.php?id=17" + }, + { + "refsource": "MLIST", + "name": "[oss-security] 20191002 Multiple vulnerabilities in Online store system v1.0 Stored XSS and unauthenticated product deletions.", + "url": "http://www.openwall.com/lists/oss-security/2019/10/02/1" } ] }, diff --git a/2019/8xxx/CVE-2019-8290.json b/2019/8xxx/CVE-2019-8290.json index 3011e5660f7..2d0a32f1321 100644 --- a/2019/8xxx/CVE-2019-8290.json +++ b/2019/8xxx/CVE-2019-8290.json @@ -11,6 +11,11 @@ "url": "https://www.abcprintf.com/view_download.php?id=17", "refsource": "MISC", "name": "https://www.abcprintf.com/view_download.php?id=17" + }, + { + "refsource": "MLIST", + "name": "[oss-security] 20191002 Multiple vulnerabilities in Online store system v1.0 Stored XSS and unauthenticated product deletions.", + "url": "http://www.openwall.com/lists/oss-security/2019/10/02/1" } ] }, diff --git a/2019/8xxx/CVE-2019-8291.json b/2019/8xxx/CVE-2019-8291.json index 6b6e9083fa4..238d914fc03 100644 --- a/2019/8xxx/CVE-2019-8291.json +++ b/2019/8xxx/CVE-2019-8291.json @@ -11,6 +11,11 @@ "url": "https://www.abcprintf.com/view_download.php?id=17", "refsource": "MISC", "name": "https://www.abcprintf.com/view_download.php?id=17" + }, + { + "refsource": "MLIST", + "name": "[oss-security] 20191002 Multiple vulnerabilities in Online store system v1.0 Stored XSS and unauthenticated product deletions.", + "url": "http://www.openwall.com/lists/oss-security/2019/10/02/1" } ] }, diff --git a/2019/8xxx/CVE-2019-8292.json b/2019/8xxx/CVE-2019-8292.json index 883d49f0845..5707d95274c 100644 --- a/2019/8xxx/CVE-2019-8292.json +++ b/2019/8xxx/CVE-2019-8292.json @@ -11,6 +11,11 @@ "url": "https://www.abcprintf.com/view_download.php?id=17", "refsource": "MISC", "name": "https://www.abcprintf.com/view_download.php?id=17" + }, + { + "refsource": "MLIST", + "name": "[oss-security] 20191002 Multiple vulnerabilities in Online store system v1.0 Stored XSS and unauthenticated product deletions.", + "url": "http://www.openwall.com/lists/oss-security/2019/10/02/1" } ] },