» 2020 » 1월

CVE-2019-1020

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-1020

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-1020

CVE-2019-1058

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-1058

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-1058

CVE-2019-0955

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-0955

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-0955

CVE-2019-0964

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-0964

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-0964

CVE-2019-0967

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-0967

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-0967

CVE-2019-0970

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-0970

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-0970

CVE-2019-0954

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-0954

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-0954

CVE-2019-0939

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2019-0939

** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2019. Notes: none.

Source: CVE-2019-0939

CVE-2020-7964

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2020-7964

An issue was discovered in Mirumee Saleor 2.x before 2.9.1. Incorrect access control in the checkoutCustomerAttach mutations allows attackers to attach their checkouts to any user ID and consequently leak user data (e.g., name, address, and previous orders of any other customer).

Source: CVE-2020-7964

CVE-2020-5224

Posted on 2020년 1월 25일2020년 1월 25일 by admin

CVE-2020-5224

In Django User Sessions (django-user-sessions) before 1.7.1, the views provided allow users to terminate specific sessions. The session key is used to identify sessions, and thus included in the rendered HTML. In itself this is not a problem. However if the website has an XSS vulnerability, the session key could be extracted by the attacker and a session takeover could happen.

Source: CVE-2020-5224