Date: Tue, 26 Mar 2024 19:42:53 GMT From: Florian Smeets <flo@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: 2d3556608999 - main - security/vuxml: add phpmyfaq < 3.2.6 Message-ID: <202403261942.42QJgrXX008567@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch main has been updated by flo: URL: https://cgit.FreeBSD.org/ports/commit/?id=2d3556608999c8c9bb82edcd483c123422a34f37 commit 2d3556608999c8c9bb82edcd483c123422a34f37 Author: Florian Smeets <flo@FreeBSD.org> AuthorDate: 2024-03-26 19:39:42 +0000 Commit: Florian Smeets <flo@FreeBSD.org> CommitDate: 2024-03-26 19:42:37 +0000 security/vuxml: add phpmyfaq < 3.2.6 --- security/vuxml/vuln/2024.xml | 37 +++++++++++++++++++++++++++++++++++++ 1 file changed, 37 insertions(+) diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml index c455477eb735..eaeab0da38a8 100644 --- a/security/vuxml/vuln/2024.xml +++ b/security/vuxml/vuln/2024.xml @@ -1,3 +1,40 @@ + <vuln vid="8b3be705-eba7-11ee-99b3-589cfc0f81b0"> + <topic>phpmyfaq -- multiple vulnerabilities</topic> + <affects> + <package> + <name>phpmyfaq-php81</name> + <name>phpmyfaq-php82</name> + <name>phpmyfaq-php83</name> + <range><lt>3.2.6</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>phpMyFAQ team reports:</p> + <blockquote cite="https://www.phpmyfaq.de/security/advisory-2024-03-25">; + <p>The phpMyFAQ Team has learned of multiple security issues that'd + been discovered in phpMyFAQ 3.2.5 and earlier. phpMyFAQ contains + cross-site scripting (XSS), SQL injection and bypass + vulnerabilities.</p> + </blockquote> + </body> + </description> + <references> + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-mmh6-5cpf-2c72</url>; + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-hm8r-95g3-5hj9</url>; + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-48vw-jpf8-hwqh</url>; + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-2grw-mc9r-822r</url>; + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-6p68-36m6-392r</url>; + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-pwh2-fpfr-x5gf</url>; + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-q7g6-xfh2-vhpx</url>; + <url>https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-qgxx-4xv5-6hcw</url>; + </references> + <dates> + <discovery>2024-03-25</discovery> + <entry>2024-03-26</entry> + </dates> + </vuln> + <vuln vid="f661184a-eb90-11ee-92fc-1c697a616631"> <topic>emacs -- multiple vulnerabilities</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202403261942.42QJgrXX008567>