diff --git a/2018/1000xxx/CVE-2018-1000074.json b/2018/1000xxx/CVE-2018-1000074.json index 47ba0d1bb4a..61c06f30e94 100644 --- a/2018/1000xxx/CVE-2018-1000074.json +++ b/2018/1000xxx/CVE-2018-1000074.json @@ -113,6 +113,11 @@ "name": "http://blog.rubygems.org/2018/02/15/2.7.6-released.html", "refsource": "MISC", "url": "http://blog.rubygems.org/2018/02/15/2.7.6-released.html" + }, + { + "refsource": "MLIST", + "name": "[debian-lts-announce] 20190520 [SECURITY] [DLA 1796-1] jruby security update", + "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html" } ] } diff --git a/2018/1000xxx/CVE-2018-1000075.json b/2018/1000xxx/CVE-2018-1000075.json index 9ea59ce06d4..ad3d4b744bb 100644 --- a/2018/1000xxx/CVE-2018-1000075.json +++ b/2018/1000xxx/CVE-2018-1000075.json @@ -113,6 +113,11 @@ "name": "[debian-lts-announce] 20180401 [SECURITY] [DLA 1336-1] rubygems security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html" + }, + { + "refsource": "MLIST", + "name": "[debian-lts-announce] 20190520 [SECURITY] [DLA 1796-1] jruby security update", + "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html" } ] } diff --git a/2018/1000xxx/CVE-2018-1000076.json b/2018/1000xxx/CVE-2018-1000076.json index b63d794f7e3..b2c4dad9742 100644 --- a/2018/1000xxx/CVE-2018-1000076.json +++ b/2018/1000xxx/CVE-2018-1000076.json @@ -113,6 +113,11 @@ "name": "[debian-lts-announce] 20180401 [SECURITY] [DLA 1336-1] rubygems security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html" + }, + { + "refsource": "MLIST", + "name": "[debian-lts-announce] 20190520 [SECURITY] [DLA 1796-1] jruby security update", + "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html" } ] } diff --git a/2018/1000xxx/CVE-2018-1000077.json b/2018/1000xxx/CVE-2018-1000077.json index 27ed295d06f..d3f4bd11216 100644 --- a/2018/1000xxx/CVE-2018-1000077.json +++ b/2018/1000xxx/CVE-2018-1000077.json @@ -113,6 +113,11 @@ "name": "[debian-lts-announce] 20180401 [SECURITY] [DLA 1336-1] rubygems security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html" + }, + { + "refsource": "MLIST", + "name": "[debian-lts-announce] 20190520 [SECURITY] [DLA 1796-1] jruby security update", + "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html" } ] } diff --git a/2018/1000xxx/CVE-2018-1000078.json b/2018/1000xxx/CVE-2018-1000078.json index 263ed82b75e..9390652adc9 100644 --- a/2018/1000xxx/CVE-2018-1000078.json +++ b/2018/1000xxx/CVE-2018-1000078.json @@ -113,6 +113,11 @@ "name": "[debian-lts-announce] 20180401 [SECURITY] [DLA 1336-1] rubygems security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html" + }, + { + "refsource": "MLIST", + "name": "[debian-lts-announce] 20190520 [SECURITY] [DLA 1796-1] jruby security update", + "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html" } ] } diff --git a/2019/11xxx/CVE-2019-11809.json b/2019/11xxx/CVE-2019-11809.json index b535ec706df..dae4f145ec4 100644 --- a/2019/11xxx/CVE-2019-11809.json +++ b/2019/11xxx/CVE-2019-11809.json @@ -1,17 +1,61 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2019-11809", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2019-11809", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An issue was discovered in Joomla! before 3.9.6. The debug views of com_users do not properly escape user supplied data, which leads to a potential XSS attack vector." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://developer.joomla.org/security-centre/780-20190501-core-xss-in-com-users-acl-debug-view", + "refsource": "MISC", + "name": "https://developer.joomla.org/security-centre/780-20190501-core-xss-in-com-users-acl-debug-view" } ] }