oss-sec mailing list archives
Re: CVE request: TYPO3-EXT-SA-2014-10
From: cve-assign () mitre org
Date: Thu, 4 Sep 2014 12:51:12 -0400 (EDT)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
http://typo3.org/teams/security/security-bulletins/typo3-extensions/typo3-ext-sa-2014-010/
Extension: CWT Frontend Edit (cwt_feedit) Vulnerability Type: Arbitrary Code Execution
Use CVE-2014-6231.
Extension: LDAP (eu_ldap) Vulnerability Type: Information Disclosure
Use CVE-2014-6232.
Extension: Flat Manager (flatmgr) Vulnerability Type: SQL Injection
Use CVE-2014-6233.
Extension: Open Graph protocol (jh_opengraphprotocol) Vulnerability Type: Cross-Site Scripting
Use CVE-2014-6234.
Extension: ke DomPDF (ke_dompdf) Vulnerability Type: Remote Code Execution
Use CVE-2014-6235.
Extension: LumoNet PHP Include (lumophpinclude) Vulnerability Type: Arbitrary Code Execution
Use CVE-2014-6236.
Extension: News Pack (news_pack) Vulnerability Type: Cross-Site Scripting
Use CVE-2014-6237.
Extension: SB Folderdownload (sb_akronymmanager) Vulnerability Type: Cross-Site Scripting
Use CVE-2014-6238.
Extension: Address visualization with Google Maps (st_address_map) Vulnerability Type: SQL Injection
Use CVE-2014-6239.
Extension: Google Sitemap (weeaar_googlesitemap) Vulnerability Type: Cross-Site Scripting
Use CVE-2014-6240.
Extension: wt_directory (wt_directory) Vulnerability Type: SQL Injection
Use CVE-2014-6241. - -- CVE assignment team, MITRE CVE Numbering Authority M/S M300 202 Burlington Road, Bedford, MA 01730 USA [ PGP key available through http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (SunOS) iQEcBAEBAgAGBQJUCJgfAAoJEKllVAevmvmsbpEIAJ7o4LND+1RaXpl1I+mBaVby jxG6TT8+3C52aL2Ih8Z+zeo2j8LCQWyADMaXfHBxqrBsLm+JC5S6NlDNr968THwt yfar1R261YrB53XZeErww1Ng5RUQnPLHFVIX6sPB1YaMwIr78Rks8J7tnY3tx3MF FdQDqfJifVyXhgEGRbnDrCOiujb0bTWr0ZXzh+FS+SZEDvTNok3Em3mvwd8HqwI2 9upJ0+hCosZZXfiwtZrI39VJ5q4EUIHMSQlMJHhBGpYuaNHS1/Zs6xftfop4uW9/ usUmapZTqqj4BpCQlR36bsigi82UrDmrF+h1uXsYHfJfuRxhZzIF37+k+46kCAQ= =Q7A4 -----END PGP SIGNATURE-----
Current thread:
- CVE request: TYPO3-EXT-SA-2014-10 Henri Salo (Sep 03)
- Re: CVE request: TYPO3-EXT-SA-2014-10 cve-assign (Sep 04)