- Synchronized data.

2025-07-30 18:04:30 +00:00 · 2018-04-20 15:02:59 -04:00 · 2018-04-20 15:02:59 -04:00 · 8d8d6dc5e3
commit 8d8d6dc5e3
parent 535d87836c
2 changed files with 53 additions and 5 deletions
--- a/2017/8xxx/CVE-2017-8315.json
+++ b/2017/8xxx/CVE-2017-8315.json
@ -35,7 +35,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "Eclipse XML parser was found vulnerable to XML External Entity attack, an attacker can exploit the vulnerability by implementing malicious code on both Androidmanifest.xml."
+            "value" : "Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and earlier was found vulnerable to an XML External Entity attack. An attacker can exploit the vulnerability by implementing malicious code on Androidmanifest.xml."
         }
      ]
   },
@ -54,10 +54,14 @@
   "references" : {
      "reference_data" : [
         {
-            "url" : "https://bugs.eclipse.org/bugs/show_bug.cgi?id=519169"
+            "name" : "https://research.checkpoint.com/parsedroid-targeting-android-development-research-community/",
+            "refsource" : "MISC",
+            "url" : "https://research.checkpoint.com/parsedroid-targeting-android-development-research-community/"
         },
         {
-            "url" : "https://research.checkpoint.com/parsedroid-targeting-android-development-research-community/"
+            "name" : "https://bugs.eclipse.org/bugs/show_bug.cgi?id=519169",
+            "refsource" : "CONFIRM",
+            "url" : "https://bugs.eclipse.org/bugs/show_bug.cgi?id=519169"
         }
      ]
   }
--- a/2018/10xxx/CVE-2018-10249.json
+++ b/2018/10xxx/CVE-2018-10249.json
@ -2,7 +2,30 @@
   "CVE_data_meta" : {
      "ASSIGNER" : "cve@mitre.org",
      "ID" : "CVE-2018-10249",
-      "STATE" : "RESERVED"
+      "STATE" : "PUBLIC"
+   },
+   "affects" : {
+      "vendor" : {
+         "vendor_data" : [
+            {
+               "product" : {
+                  "product_data" : [
+                     {
+                        "product_name" : "n/a",
+                        "version" : {
+                           "version_data" : [
+                              {
+                                 "version_value" : "n/a"
+                              }
+                           ]
+                        }
+                     }
+                  ]
+               },
+               "vendor_name" : "n/a"
+            }
+         ]
+      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
@ -11,7 +34,28 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem.  When the candidate has been publicized, the details for this candidate will be provided."
+            "value" : "baijiacms V3 has CSRF via index.php?mod=site&op=edituser&name=manager&do=user to add an administrator account."
+         }
+      ]
+   },
+   "problemtype" : {
+      "problemtype_data" : [
+         {
+            "description" : [
+               {
+                  "lang" : "eng",
+                  "value" : "n/a"
+               }
+            ]
+         }
+      ]
+   },
+   "references" : {
+      "reference_data" : [
+         {
+            "name" : "https://crayon-xin.github.io/2018/04/20/baijiacmsV3-CSRF-add-admin/",
+            "refsource" : "MISC",
+            "url" : "https://crayon-xin.github.io/2018/04/20/baijiacmsV3-CSRF-add-admin/"
         }
      ]
   }