|
Lines 1-3
Link Here
|
|
|
1 |
<vuln vid="bed545c6-bdb8-11ed-bca8-a33124f1beb1"> |
| 2 |
<topic>mantis -- multiple vulnerabilities</topic> |
| 3 |
<affects> |
| 4 |
<package> |
| 5 |
<name>mantis-php74</name> |
| 6 |
<name>mantis-php80</name> |
| 7 |
<name>mantis-php81</name> |
| 8 |
<name>mantis-php82</name> |
| 9 |
<range><lt>2.25.6,1</lt></range> |
| 10 |
</package> |
| 11 |
</affects> |
| 12 |
<description> |
| 13 |
<body xmlns="http://www.w3.org/1999/xhtml"> |
| 14 |
<p>Mantis 2.25.6 release reports:</p> |
| 15 |
<blockquote cite="https://mantisbt.org/bugs/changelog_page.php?project=mantisbt&version=2.25.6"> |
| 16 |
<p>Security and maintenance release</p> |
| 17 |
<ul> |
| 18 |
<li>0031086: Private issue summary disclosure (CVE-2023-22476)</li> |
| 19 |
<li>0030772: Update (bundled) moment.js to 2.29.4 (CVE-2022-31129)</li> |
| 20 |
<li>0030791: Allow adding relation type noopener/noreferrer to outgoing links</li> |
| 21 |
</ul> |
| 22 |
</blockquote> |
| 23 |
</body> |
| 24 |
</description> |
| 25 |
<references> |
| 26 |
<cvename>CVE-2023-22476</cvename> |
| 27 |
<url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-22476</url> |
| 28 |
<cvename>CVE-2022-31129</cvename> |
| 29 |
<url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-31129</url> |
| 30 |
</references> |
| 31 |
<dates> |
| 32 |
<discovery>2023-01-06</discovery> |
| 33 |
<entry>2023-03-08</entry> |
| 34 |
</dates> |
| 35 |
</vuln> |
| 36 |
|
| 1 |
<vuln vid="6678211c-bd47-11ed-beb0-1c1b0d9ea7e6"> |
37 |
<vuln vid="6678211c-bd47-11ed-beb0-1c1b0d9ea7e6"> |
| 2 |
<topic>Apache OpenOffice -- master password vulnerabilities</topic> |
38 |
<topic>Apache OpenOffice -- master password vulnerabilities</topic> |
| 3 |
<affects> |
39 |
<affects> |