Lines 1-3
Link Here
|
|
|
1 |
<vuln vid="bed545c6-bdb8-11ed-bca8-a33124f1beb1"> |
2 |
<topic>mantis -- multiple vulnerabilities</topic> |
3 |
<affects> |
4 |
<package> |
5 |
<name>mantis-php74</name> |
6 |
<name>mantis-php80</name> |
7 |
<name>mantis-php81</name> |
8 |
<name>mantis-php82</name> |
9 |
<range><lt>2.25.6,1</lt></range> |
10 |
</package> |
11 |
</affects> |
12 |
<description> |
13 |
<body xmlns="http://www.w3.org/1999/xhtml"> |
14 |
<p>Mantis 2.25.6 release reports:</p> |
15 |
<blockquote cite="https://mantisbt.org/bugs/changelog_page.php?project=mantisbt&version=2.25.6"> |
16 |
<p>Security and maintenance release</p> |
17 |
<ul> |
18 |
<li>0031086: Private issue summary disclosure (CVE-2023-22476)</li> |
19 |
<li>0030772: Update (bundled) moment.js to 2.29.4 (CVE-2022-31129)</li> |
20 |
<li>0030791: Allow adding relation type noopener/noreferrer to outgoing links</li> |
21 |
</ul> |
22 |
</blockquote> |
23 |
</body> |
24 |
</description> |
25 |
<references> |
26 |
<cvename>CVE-2023-22476</cvename> |
27 |
<url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2023-22476</url> |
28 |
<cvename>CVE-2022-31129</cvename> |
29 |
<url>https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-31129</url> |
30 |
</references> |
31 |
<dates> |
32 |
<discovery>2023-01-06</discovery> |
33 |
<entry>2023-03-08</entry> |
34 |
</dates> |
35 |
</vuln> |
36 |
|
1 |
<vuln vid="6678211c-bd47-11ed-beb0-1c1b0d9ea7e6"> |
37 |
<vuln vid="6678211c-bd47-11ed-beb0-1c1b0d9ea7e6"> |
2 |
<topic>Apache OpenOffice -- master password vulnerabilities</topic> |
38 |
<topic>Apache OpenOffice -- master password vulnerabilities</topic> |
3 |
<affects> |
39 |
<affects> |