diff --git a/2019/14xxx/CVE-2019-14748.json b/2019/14xxx/CVE-2019-14748.json index fd43912647d..1a3752d89c1 100644 --- a/2019/14xxx/CVE-2019-14748.json +++ b/2019/14xxx/CVE-2019-14748.json @@ -66,6 +66,11 @@ "url": "https://github.com/osTicket/osTicket/releases/tag/v1.10.7", "refsource": "MISC", "name": "https://github.com/osTicket/osTicket/releases/tag/v1.10.7" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/154003/osTicket-1.12-File-Upload-Cross-Site-Scripting.html", + "url": "http://packetstormsecurity.com/files/154003/osTicket-1.12-File-Upload-Cross-Site-Scripting.html" } ] } diff --git a/2019/14xxx/CVE-2019-14749.json b/2019/14xxx/CVE-2019-14749.json index eb1ba0d5850..32e0372233b 100644 --- a/2019/14xxx/CVE-2019-14749.json +++ b/2019/14xxx/CVE-2019-14749.json @@ -66,6 +66,11 @@ "url": "https://github.com/osTicket/osTicket/commit/99818486c5b1d8aa445cee232825418d6834f249", "refsource": "MISC", "name": "https://github.com/osTicket/osTicket/commit/99818486c5b1d8aa445cee232825418d6834f249" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/154004/osTicket-1.12-Formula-Injection.html", + "url": "http://packetstormsecurity.com/files/154004/osTicket-1.12-Formula-Injection.html" } ] } diff --git a/2019/14xxx/CVE-2019-14750.json b/2019/14xxx/CVE-2019-14750.json index 8e2818aa58d..c2c8bf303e8 100644 --- a/2019/14xxx/CVE-2019-14750.json +++ b/2019/14xxx/CVE-2019-14750.json @@ -66,6 +66,11 @@ "url": "https://github.com/osTicket/osTicket/commit/c3ba5b78261e07a883ad8fac28c214486c854e12", "refsource": "MISC", "name": "https://github.com/osTicket/osTicket/commit/c3ba5b78261e07a883ad8fac28c214486c854e12" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/154005/osTicket-1.12-Cross-Site-Scripting.html", + "url": "http://packetstormsecurity.com/files/154005/osTicket-1.12-Cross-Site-Scripting.html" } ] } diff --git a/2019/14xxx/CVE-2019-14933.json b/2019/14xxx/CVE-2019-14933.json new file mode 100644 index 00000000000..ec0d8200147 --- /dev/null +++ b/2019/14xxx/CVE-2019-14933.json @@ -0,0 +1,67 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2019-14933", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Bagisto 0.1.5 allows CSRF under /admin URIs." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/bagisto/bagisto/issues/750", + "refsource": "MISC", + "name": "https://github.com/bagisto/bagisto/issues/750" + }, + { + "url": "https://forums.bagisto.com/category/1/announcements", + "refsource": "MISC", + "name": "https://forums.bagisto.com/category/1/announcements" + } + ] + } +} \ No newline at end of file