Browse code

merge+update multidet limesurvey, websitebaker, roundcube

Hanno Böck authored on 12/12/2019 12:18:16
Showing 2 changed files
... ...
@@ -2,28 +2,20 @@
2 2
   {
3 3
     "name": "WebsiteBaker",
4 4
     "url": "https://websitebaker.org/",
5
-    "safe": "2.8.4",
6
-    "vuln": "CVE-2015-0553",
5
+    "safe": "2.11.0",
6
+    "vuln": "CVE-2017-16514",
7 7
     "detection": [
8 8
       {
9 9
         "file": "version.php",
10 10
         "variable": "VERSION",
11 11
         "subdir": 3,
12 12
         "extra_match": "Website Baker Project"
13
-      }
14
-    ]
15
-  },
16
-  {
17
-    "name": "WebsiteBaker28",
18
-    "url": "https://websitebaker.org/",
19
-    "safe": "2.8.4",
20
-    "vuln": "CVE-2015-0553",
21
-    "detection": [
13
+      },
22 14
       {
23
-        "file": "info.php",
24
-        "variable": "$template_platform",
25
-        "subdir": 3,
26
-        "extra_match": "wb_theme"
15
+        "file": "version.php",
16
+        "variable": "VERSION",
17
+        "subdir": 2,
18
+        "extra_match": "isteam"
27 19
       }
28 20
     ]
29 21
   },
... ...
@@ -196,24 +196,16 @@
196 196
     ]
197 197
   },
198 198
   {
199
-    "name": "RoundCube-deprecated",
199
+    "name": "RoundCube",
200 200
     "url": "https://roundcube.net",
201 201
     "safe": "1.3.10",
202
-    "vuln": "CVE-2019-10740",
202
+    "vuln": "CVE-2019-15237",
203 203
     "detection": [
204 204
       {
205 205
         "file": "index.php",
206 206
         "variable": "RCMAIL_VERSION",
207 207
         "subdir": 0
208
-      }
209
-    ]
210
-  },
211
-  {
212
-    "name": "RoundCube",
213
-    "url": "https://roundcube.net",
214
-    "safe": "1.3.10",
215
-    "vuln": "CVE-2019-10740",
216
-    "detection": [
208
+      },
217 209
       {
218 210
         "file": "iniset.php",
219 211
         "variable": "RCMAIL_VERSION",
... ...
@@ -466,44 +458,31 @@
466 458
     ]
467 459
   },
468 460
   {
469
-    "name": "limesurvey18",
470
-    "url": "http://www.limesurvey.org/",
471
-    "safe": "2.07",
472
-    "vuln": "CVE-2015-5078",
461
+    "name": "limesurvey",
462
+    "url": "https://www.limesurvey.org/",
463
+    "safe": "3.17.14",
464
+    "vuln": "CVE-2019-16174",
473 465
     "detection": [
474 466
       {
475 467
         "file": "common.php",
476 468
         "variable": "$versionnumber",
477 469
         "subdir": 0,
478
-        "extra_match": "LimeSurvey"
479
-      }
480
-    ]
481
-  },
482
-  {
483
-    "name": "limesurvey19",
484
-    "url": "http://www.limesurvey.org/",
485
-    "safe": "2.07",
486
-    "vuln": "CVE-2015-5078",
487
-    "detection": [
470
+        "extra_match": "LimeSurvey",
471
+        "note": "1.8.x and earlier"
472
+      },
488 473
       {
489 474
         "file": "version.php",
490 475
         "variable": "$versionnumber",
491 476
         "subdir": 0,
492
-        "extra_match": "$dbversionnumber"
493
-      }
494
-    ]
495
-  },
496
-  {
497
-    "name": "limesurvey",
498
-    "url": "http://www.limesurvey.org/",
499
-    "safe": "2.07",
500
-    "vuln": "CVE-2015-5078",
501
-    "detection": [
477
+        "extra_match": "$dbversionnumber",
478
+        "note": "1.9.x"
479
+      },
502 480
       {
503 481
         "file": "version.php",
504 482
         "variable": "$config['versionnumber']",
505 483
         "subdir": 2,
506
-        "extra_match": "LimeSurvey"
484
+        "extra_match": "LimeSurvey",
485
+        "note": "2.x and above"
507 486
       }
508 487
     ]
509 488
   },