Browse code

update moodle

Hanno Böck authored on12/05/2021 08:58:11
Showing1 changed files
... ...
@@ -219,9 +219,10 @@
219 219
   {
220 220
     "name": "Moodle",
221 221
     "url": "https://moodle.org/",
222
-    "safe": "3.10.2",
223
-    "old_safe": "3.9.5,3.8.8,3.5.17",
224
-    "vuln": "https://lists.moodle.org/w/1j0pE5GUxgDA9HpJ6MEsAQ/tq0lNDXhoqeaSOSsRiZOjA/Mrcuqh4LqJJeDOD1R7bp892Q",
222
+    "safe": "3.10.4",
223
+    "old_safe": "3.9.7,3.8.9,3.5.18",
224
+    "latest": "3.11",
225
+    "vuln": "CVE-2021-32472",
225 226
     "detection": [
226 227
       {
227 228
         "file": "version.php",
Browse code

moodle update

Hanno Böck authored on09/03/2021 09:01:00
Showing1 changed files
... ...
@@ -219,9 +219,9 @@
219 219
   {
220 220
     "name": "Moodle",
221 221
     "url": "https://moodle.org/",
222
-    "safe": "3.10.1",
223
-    "old_safe": "3.9.4,3.8.7,3.5.16",
224
-    "vuln": "CVE-2021-20183",
222
+    "safe": "3.10.2",
223
+    "old_safe": "3.9.5,3.8.8,3.5.17",
224
+    "vuln": "https://lists.moodle.org/w/1j0pE5GUxgDA9HpJ6MEsAQ/tq0lNDXhoqeaSOSsRiZOjA/Mrcuqh4LqJJeDOD1R7bp892Q",
225 225
     "detection": [
226 226
       {
227 227
         "file": "version.php",
Browse code

fix roundcube rule

Hanno Böck authored on11/02/2021 08:36:03
Showing1 changed files
... ...
@@ -201,7 +201,7 @@
201 201
     "url": "https://roundcube.net",
202 202
     "safe": "1.4.11",
203 203
     "old_safe": "1.3.16,1.2.13",
204
-    "latest": "1.4.10",
204
+    "latest": "1.4.11",
205 205
     "vuln": "CVE-2021-26925",
206 206
     "detection": [
207 207
       {
Browse code

roundcube update

Hanno Böck authored on10/02/2021 12:14:56
Showing1 changed files
... ...
@@ -199,10 +199,10 @@
199 199
   {
200 200
     "name": "RoundCube",
201 201
     "url": "https://roundcube.net",
202
-    "safe": "1.4.10",
202
+    "safe": "1.4.11",
203 203
     "old_safe": "1.3.16,1.2.13",
204 204
     "latest": "1.4.10",
205
-    "vuln": "CVE-2020-35730",
205
+    "vuln": "CVE-2021-26925",
206 206
     "detection": [
207 207
       {
208 208
         "file": "index.php",
Browse code

nextcloud update

Hanno Böck authored on02/02/2021 20:28:01
Showing1 changed files
... ...
@@ -497,9 +497,9 @@
497 497
   {
498 498
     "name": "nextcloud",
499 499
     "url": "https://nextcloud.com",
500
-    "safe": "19.0.2",
501
-    "old_safe": "18.0.10",
502
-    "vuln": "CVE-2020-8236",
500
+    "safe": "20.0.2",
501
+    "old_safe": "19.0.8,18.0.14",
502
+    "vuln": "CVE-2020-8294",
503 503
     "detection": [
504 504
       {
505 505
         "file": "version.php",
Browse code

moodle update

Hanno Böck authored on18/01/2021 14:56:05
Showing1 changed files
... ...
@@ -219,9 +219,9 @@
219 219
   {
220 220
     "name": "Moodle",
221 221
     "url": "https://moodle.org/",
222
-    "safe": "3.9.3",
223
-    "old_safe": "3.8.6,3.7.9,3.5.15",
224
-    "vuln": "CVE-2020-25699",
222
+    "safe": "3.10.1",
223
+    "old_safe": "3.9.4,3.8.7,3.5.16",
224
+    "vuln": "CVE-2021-20183",
225 225
     "detection": [
226 226
       {
227 227
         "file": "version.php",
Browse code

update mantis

Hanno Böck authored on01/01/2021 13:17:51
Showing1 changed files
... ...
@@ -44,8 +44,8 @@
44 44
   {
45 45
     "name": "Mantis",
46 46
     "url": "https://mantisbt.org/",
47
-    "safe": "2.24.3",
48
-    "vuln": "CVE-2020-25830",
47
+    "safe": "2.24.4",
48
+    "vuln": "CVE-2020-28413",
49 49
     "detection": [
50 50
       {
51 51
         "file": "config_defaults_inc.php",
Browse code

update roundcube

Hanno Böck authored on31/12/2020 17:04:13
Showing1 changed files
... ...
@@ -199,10 +199,10 @@
199 199
   {
200 200
     "name": "RoundCube",
201 201
     "url": "https://roundcube.net",
202
-    "safe": "1.4.8",
203
-    "old_safe": "1.3.15,1.2.12",
204
-    "latest": "1.4.8",
205
-    "vuln": "CVE-2020-16145",
202
+    "safe": "1.4.10",
203
+    "old_safe": "1.3.16,1.2.13",
204
+    "latest": "1.4.10",
205
+    "vuln": "CVE-2020-35730",
206 206
     "detection": [
207 207
       {
208 208
         "file": "index.php",
Browse code

update moodle

Hanno Böck authored on15/11/2020 11:19:45
Showing1 changed files
... ...
@@ -219,9 +219,9 @@
219 219
   {
220 220
     "name": "Moodle",
221 221
     "url": "https://moodle.org/",
222
-    "safe": "3.9.1",
223
-    "old_safe": "3.8.4,3.7.7,3.5.13",
224
-    "vuln": "CVE-2020-14320",
222
+    "safe": "3.9.3",
223
+    "old_safe": "3.8.6,3.7.9,3.5.15",
224
+    "vuln": "CVE-2020-25699",
225 225
     "detection": [
226 226
       {
227 227
         "file": "version.php",
Browse code

mantis update

Hanno Böck authored on31/10/2020 21:54:37
Showing1 changed files
... ...
@@ -44,8 +44,8 @@
44 44
   {
45 45
     "name": "Mantis",
46 46
     "url": "https://mantisbt.org/",
47
-    "safe": "2.24.2",
48
-    "vuln": "CVE-2020-16266",
47
+    "safe": "2.24.3",
48
+    "vuln": "CVE-2020-25830",
49 49
     "detection": [
50 50
       {
51 51
         "file": "config_defaults_inc.php",
Browse code

json-style

Hanno Böck authored on31/10/2020 15:46:26
Showing1 changed files
... ...
@@ -616,4 +616,4 @@
616 616
       }
617 617
     ]
618 618
   }
619
-]
619
+]
620 620
\ No newline at end of file
Browse code

nextcloud update

Hanno Böck authored on31/10/2020 08:09:04
Showing1 changed files
... ...
@@ -497,9 +497,9 @@
497 497
   {
498 498
     "name": "nextcloud",
499 499
     "url": "https://nextcloud.com",
500
-    "safe": "19.0.1",
501
-    "old_safe": "18.0.7,18.0.6",
502
-    "vuln": "CVE-2020-8183",
500
+    "safe": "19.0.2",
501
+    "old_safe": "18.0.10",
502
+    "vuln": "CVE-2020-8236",
503 503
     "detection": [
504 504
       {
505 505
         "file": "version.php",
... ...
@@ -616,4 +616,4 @@
616 616
       }
617 617
     ]
618 618
   }
619
-]
620 619
\ No newline at end of file
620
+]
Browse code

pma update

Hanno Böck authored on10/10/2020 13:09:02
Showing1 changed files
... ...
@@ -2,9 +2,9 @@
2 2
   {
3 3
     "name": "phpMyAdmin",
4 4
     "url": "https://www.phpmyadmin.net/",
5
-    "safe": "5.0.2",
6
-    "old_safe": "4.9.5",
7
-    "vuln": "CVE-2020-10803",
5
+    "safe": "5.0.3",
6
+    "old_safe": "4.9.6",
7
+    "vuln": "https://www.phpmyadmin.net/security/PMASA-2020-6/",
8 8
     "detection": [
9 9
       {
10 10
         "file": "Config.class.php",
Browse code

roundcube update

Hanno Böck authored on01/09/2020 20:23:39
Showing1 changed files
... ...
@@ -199,10 +199,10 @@
199 199
   {
200 200
     "name": "RoundCube",
201 201
     "url": "https://roundcube.net",
202
-    "safe": "1.4.7",
203
-    "old_safe": "1.3.14,1.2.11",
204
-    "latest": "1.4.7",
205
-    "vuln": "https://roundcube.net/news/2020/06/02/security-updates-1.4.5-and-1.3.12",
202
+    "safe": "1.4.8",
203
+    "old_safe": "1.3.15,1.2.12",
204
+    "latest": "1.4.8",
205
+    "vuln": "CVE-2020-16145",
206 206
     "detection": [
207 207
       {
208 208
         "file": "index.php",
Browse code

mantis update

Hanno Böck authored on09/08/2020 09:27:01
Showing1 changed files
... ...
@@ -44,8 +44,8 @@
44 44
   {
45 45
     "name": "Mantis",
46 46
     "url": "https://mantisbt.org/",
47
-    "safe": "2.24.1",
48
-    "vuln": "https://www.mantisbt.org/bugs/view.php?id=26893",
47
+    "safe": "2.24.2",
48
+    "vuln": "CVE-2020-16266",
49 49
     "detection": [
50 50
       {
51 51
         "file": "config_defaults_inc.php",
Browse code

fix version ordering

Hanno Böck authored on03/08/2020 08:53:03
Showing1 changed files
... ...
@@ -498,7 +498,7 @@
498 498
     "name": "nextcloud",
499 499
     "url": "https://nextcloud.com",
500 500
     "safe": "19.0.1",
501
-    "old_safe": "18.0.6,18.0.7",
501
+    "old_safe": "18.0.7,18.0.6",
502 502
     "vuln": "CVE-2020-8183",
503 503
     "detection": [
504 504
       {
Browse code

fix json style

Hanno Böck authored on02/08/2020 09:57:03
Showing1 changed files
... ...
@@ -616,4 +616,4 @@
616 616
       }
617 617
     ]
618 618
   }
619
-]
619
+]
620 620
\ No newline at end of file
Browse code

add another old nc version

Hanno Böck authored on01/08/2020 09:15:54
Showing1 changed files
... ...
@@ -498,7 +498,7 @@
498 498
     "name": "nextcloud",
499 499
     "url": "https://nextcloud.com",
500 500
     "safe": "19.0.1",
501
-    "old_safe": "18.0.6",
501
+    "old_safe": "18.0.6,18.0.7",
502 502
     "vuln": "CVE-2020-8183",
503 503
     "detection": [
504 504
       {
... ...
@@ -616,4 +616,4 @@
616 616
       }
617 617
     ]
618 618
   }
619
-]
620 619
\ No newline at end of file
620
+]
Browse code

nextcloud update

Hanno Böck authored on30/07/2020 20:40:06
Showing1 changed files
... ...
@@ -497,9 +497,9 @@
497 497
   {
498 498
     "name": "nextcloud",
499 499
     "url": "https://nextcloud.com",
500
-    "safe": "18.0.3",
501
-    "old_safe": "17.0.6,16.0.10",
502
-    "vuln": "https://nextcloud.com/security/advisory/?id=NC-SA-2020-019",
500
+    "safe": "19.0.1",
501
+    "old_safe": "18.0.6",
502
+    "vuln": "CVE-2020-8183",
503 503
     "detection": [
504 504
       {
505 505
         "file": "version.php",
Browse code

moodle update

Hanno Böck authored on13/07/2020 20:20:03
Showing1 changed files
... ...
@@ -219,9 +219,9 @@
219 219
   {
220 220
     "name": "Moodle",
221 221
     "url": "https://moodle.org/",
222
-    "safe": "3.8.3",
223
-    "old_safe": "3.7.6,3.6.10,3.5.12",
224
-    "vuln": "CVE-2020-10738",
222
+    "safe": "3.9.1",
223
+    "old_safe": "3.8.4,3.7.7,3.5.13",
224
+    "vuln": "CVE-2020-14320",
225 225
     "detection": [
226 226
       {
227 227
         "file": "version.php",
Browse code

roundcube update

Hanno Böck authored on06/07/2020 08:53:01
Showing1 changed files
... ...
@@ -199,9 +199,9 @@
199 199
   {
200 200
     "name": "RoundCube",
201 201
     "url": "https://roundcube.net",
202
-    "safe": "1.4.5",
203
-    "old_safe": "1.3.12",
204
-    "latest": "1.4.6",
202
+    "safe": "1.4.7",
203
+    "old_safe": "1.3.14,1.2.11",
204
+    "latest": "1.4.7",
205 205
     "vuln": "https://roundcube.net/news/2020/06/02/security-updates-1.4.5-and-1.3.12",
206 206
     "detection": [
207 207
       {
Browse code

update roundcube

Hanno Böck authored on20/06/2020 10:56:13
Showing1 changed files
... ...
@@ -199,8 +199,10 @@
199 199
   {
200 200
     "name": "RoundCube",
201 201
     "url": "https://roundcube.net",
202
-    "safe": "1.3.10",
203
-    "vuln": "CVE-2019-15237",
202
+    "safe": "1.4.5",
203
+    "old_safe": "1.3.12",
204
+    "latest": "1.4.6",
205
+    "vuln": "https://roundcube.net/news/2020/06/02/security-updates-1.4.5-and-1.3.12",
204 206
     "detection": [
205 207
       {
206 208
         "file": "index.php",
Browse code

moodle update

Hanno Böck authored on12/05/2020 16:12:28
Showing1 changed files
... ...
@@ -217,9 +217,9 @@
217 217
   {
218 218
     "name": "Moodle",
219 219
     "url": "https://moodle.org/",
220
-    "safe": "3.8.2",
221
-    "old_safe": "3.7.5,3.6.9,3.5.11",
222
-    "vuln": "CVE-2020-1754",
220
+    "safe": "3.8.3",
221
+    "old_safe": "3.7.6,3.6.10,3.5.12",
222
+    "vuln": "CVE-2020-10738",
223 223
     "detection": [
224 224
       {
225 225
         "file": "version.php",
Browse code

mantis update

Hanno Böck authored on04/05/2020 17:37:57
Showing1 changed files
... ...
@@ -44,8 +44,8 @@
44 44
   {
45 45
     "name": "Mantis",
46 46
     "url": "https://mantisbt.org/",
47
-    "safe": "2.23.0",
48
-    "vuln": "CVE-2017-18214",
47
+    "safe": "2.24.1",
48
+    "vuln": "https://www.mantisbt.org/bugs/view.php?id=26893",
49 49
     "detection": [
50 50
       {
51 51
         "file": "config_defaults_inc.php",
Browse code

nextcloud update

Hanno Böck authored on03/05/2020 13:44:46
Showing1 changed files
... ...
@@ -495,9 +495,9 @@
495 495
   {
496 496
     "name": "nextcloud",
497 497
     "url": "https://nextcloud.com",
498
-    "safe": "18.0.1",
499
-    "old_safe": "17.0.5,17.0.4,16.0.10",
500
-    "vuln": "https://nextcloud.com/security/advisory/?id=NC-SA-2020-015",
498
+    "safe": "18.0.3",
499
+    "old_safe": "17.0.6,16.0.10",
500
+    "vuln": "https://nextcloud.com/security/advisory/?id=NC-SA-2020-019",
501 501
     "detection": [
502 502
       {
503 503
         "file": "version.php",
Browse code

reveal url to cve

Hanno Böck authored on08/04/2020 19:12:56
Showing1 changed files
... ...
@@ -604,7 +604,7 @@
604 604
     "name": "reveal.js",
605 605
     "url": "https://revealjs.com/",
606 606
     "safe": "3.9.2",
607
-    "vuln": "https://github.com/hakimel/reveal.js/releases/tag/3.9.2",
607
+    "vuln": "CVE-2020-8127",
608 608
     "latest": "3.9.2",
609 609
     "detection": [
610 610
       {
Browse code

add reveal.js

Hanno Böck authored on08/04/2020 19:11:23
Showing1 changed files
... ...
@@ -599,5 +599,19 @@
599 599
         "subdir": 3
600 600
       }
601 601
     ]
602
+  },
603
+  {
604
+    "name": "reveal.js",
605
+    "url": "https://revealjs.com/",
606
+    "safe": "3.9.2",
607
+    "vuln": "https://github.com/hakimel/reveal.js/releases/tag/3.9.2",
608
+    "latest": "3.9.2",
609
+    "detection": [
610
+      {
611
+        "file": "reveal.js",
612
+        "variable": "var VERSION",
613
+        "subdir": 1
614
+      }
615
+    ]
602 616
   }
603 617
 ]
604 618
\ No newline at end of file
Browse code

limesurvey xss

Hanno Böck authored on06/04/2020 08:40:47
Showing1 changed files
... ...
@@ -452,8 +452,8 @@
452 452
   {
453 453
     "name": "limesurvey",
454 454
     "url": "https://www.limesurvey.org/",
455
-    "safe": "3.21.3",
456
-    "vuln": "https://www.limesurvey.org/de/limesurvey-updates/2206-limesurvey-3-21-3-build-191219-released",
455
+    "safe": "4.1.15",
456
+    "vuln": "https://www.limesurvey.org/limesurvey-updates/2234-limesurvey-4-1-15-build-200402-released",
457 457
     "detection": [
458 458
       {
459 459
         "file": "common.php",
Browse code

owncloud update

Hanno Böck authored on05/04/2020 08:51:15
Showing1 changed files
... ...
@@ -510,8 +510,9 @@
510 510
   {
511 511
     "name": "owncloud",
512 512
     "url": "https://owncloud.org/",
513
-    "safe": "10.2.1",
514
-    "vuln": "https://owncloud.org/security/advisories/possibility-to-extend-internal-share-permissions-using-the-api/",
513
+    "safe": "10.3.2",
514
+    "latest": "10.4.0",
515
+    "vuln": "https://owncloud.org/security/advisories/ssrf-in-add-to-your-owncloud-functionality/",
515 516
     "detection": [
516 517
       {
517 518
         "file": "util.php",
Browse code

matomo update

Hanno Böck authored on04/04/2020 07:32:42
Showing1 changed files
... ...
@@ -302,9 +302,9 @@
302 302
   {
303 303
     "name": "Matomo",
304 304
     "url": "https://matomo.org/",
305
-    "safe": "3.13.1",
306
-    "vuln": "https://matomo.org/changelog/matomo-3-13-1/",
307
-    "latest": "3.13.1",
305
+    "safe": "3.13.4",
306
+    "vuln": "https://matomo.org/changelog/matomo-3-13-4/",
307
+    "latest": "3.13.4",
308 308
     "detection": [
309 309
       {
310 310
         "file": "Version.php",
Browse code

nextcloud add supported old version

Hanno Böck authored on26/03/2020 19:58:06
Showing1 changed files
... ...
@@ -496,7 +496,7 @@
496 496
     "name": "nextcloud",
497 497
     "url": "https://nextcloud.com",
498 498
     "safe": "18.0.1",
499
-    "old_safe": "17.0.4,16.0.10",
499
+    "old_safe": "17.0.5,17.0.4,16.0.10",
500 500
     "vuln": "https://nextcloud.com/security/advisory/?id=NC-SA-2020-015",
501 501
     "detection": [
502 502
       {
Browse code

moodle update

Hanno Böck authored on25/03/2020 11:57:58
Showing1 changed files
... ...
@@ -217,9 +217,9 @@
217 217
   {
218 218
     "name": "Moodle",
219 219
     "url": "https://moodle.org/",
220
-    "safe": "3.8.1",
221
-    "old_safe": "3.7.3,3.6.7,3.5.9",
222
-    "vuln": "CVE-2020-1691",
220
+    "safe": "3.8.2",
221
+    "old_safe": "3.7.5,3.6.9,3.5.11",
222
+    "vuln": "CVE-2020-1754",
223 223
     "detection": [
224 224
       {
225 225
         "file": "version.php",
Browse code

pma update

Hanno Böck authored on23/03/2020 08:05:37
Showing1 changed files
... ...
@@ -2,9 +2,9 @@
2 2
   {
3 3
     "name": "phpMyAdmin",
4 4
     "url": "https://www.phpmyadmin.net/",
5
-    "safe": "5.0.1",
6
-    "old_safe": "4.9.4",
7
-    "vuln": "CVE-2020-5504",
5
+    "safe": "5.0.2",
6
+    "old_safe": "4.9.5",
7
+    "vuln": "CVE-2020-10803",
8 8
     "detection": [
9 9
       {
10 10
         "file": "Config.class.php",
Browse code

nextcloud update

Hanno Böck authored on14/03/2020 08:13:15
Showing1 changed files
... ...
@@ -495,9 +495,9 @@
495 495
   {
496 496
     "name": "nextcloud",
497 497
     "url": "https://nextcloud.com",
498
-    "safe": "17.0.2",
499
-    "old_safe": "16.0.7,15.0.14",
500
-    "vuln": "CVE-2019-15613",
498
+    "safe": "18.0.1",
499
+    "old_safe": "17.0.4,16.0.10",
500
+    "vuln": "https://nextcloud.com/security/advisory/?id=NC-SA-2020-015",
501 501
     "detection": [
502 502
       {
503 503
         "file": "version.php",
Browse code

nextcloud update

Hanno Böck authored on14/02/2020 18:32:06
Showing1 changed files
... ...
@@ -495,9 +495,9 @@
495 495
   {
496 496
     "name": "nextcloud",
497 497
     "url": "https://nextcloud.com",
498
-    "safe": "15.0.1",
499
-    "old_safe": "14.0.5,13.0.9",
500
-    "vuln": "CVE-2019-5449",
498
+    "safe": "17.0.2",
499
+    "old_safe": "16.0.7,15.0.14",
500
+    "vuln": "CVE-2019-15613",
501 501
     "detection": [
502 502
       {
503 503
         "file": "version.php",
Browse code

update phlist

Hanno Böck authored on14/02/2020 18:22:05
Showing1 changed files
... ...
@@ -284,8 +284,8 @@
284 284
   {
285 285
     "name": "phplist",
286 286
     "url": "https://www.phplist.org/",
287
-    "safe": "3.4.3",
288
-    "vuln": "https://www.phplist.org/newslist/phplist-3-4-3-release-notes/",
287
+    "safe": "3.5.1",
288
+    "vuln": "CVE-2020-8547",
289 289
     "detection": [
290 290
       {
291 291
         "file": "connect.php",
Browse code

matomo update

Hanno Böck authored on22/01/2020 21:40:22
Showing1 changed files
... ...
@@ -300,31 +300,24 @@
300 300
     ]
301 301
   },
302 302
   {
303
-    "name": "Piwik",
303
+    "name": "Matomo",
304 304
     "url": "https://matomo.org/",
305
-    "safe": "3.12.0",
306
-    "vuln": "https://matomo.org/changelog/matomo-3-12-0/",
305
+    "safe": "3.13.1",
306
+    "vuln": "https://matomo.org/changelog/matomo-3-13-1/",
307
+    "latest": "3.13.1",
307 308
     "detection": [
308 309
       {
309 310
         "file": "Version.php",
310 311
         "variable": "const VERSION",
311 312
         "subdir": 1,
312
-        "extra_match": "@link http://piwik.org"
313
-      }
314
-    ]
315
-  },
316
-  {
317
-    "name": "Matomo",
318
-    "url": "https://matomo.org/",
319
-    "safe": "3.12.0",
320
-    "vuln": "https://matomo.org/changelog/matomo-3-12-0/",
321
-    "latest": "3.13.0",
322
-    "detection": [
313
+        "extra_match": "@link https://matomo.org"
314
+      },
323 315
       {
324 316
         "file": "Version.php",
325 317
         "variable": "const VERSION",
326 318
         "subdir": 1,
327
-        "extra_match": "@link https://matomo.org"
319
+        "extra_match": "@link http://piwik.org",
320
+        "note": "when it was called Piwik"
328 321
       }
329 322
     ]
330 323
   },
Browse code

moodle update

Hanno Böck authored on20/01/2020 13:50:46
Showing1 changed files
... ...
@@ -217,9 +217,9 @@
217 217
   {
218 218
     "name": "Moodle",
219 219
     "url": "https://moodle.org/",
220
-    "safe": "3.7.1",
221
-    "old_safe": "3.6.5,3.5.7",
222
-    "vuln": "CVE-2019-10189",
220
+    "safe": "3.8.1",
221
+    "old_safe": "3.7.3,3.6.7,3.5.9",
222
+    "vuln": "CVE-2020-1691",
223 223
     "detection": [
224 224
       {
225 225
         "file": "version.php",
Browse code

pma update

Hanno Böck authored on08/01/2020 12:49:00
Showing1 changed files
... ...
@@ -2,8 +2,9 @@
2 2
   {
3 3
     "name": "phpMyAdmin",
4 4
     "url": "https://www.phpmyadmin.net/",
5
-    "safe": "4.9.2",
6
-    "vuln": "CVE-2019-18622",
5
+    "safe": "5.0.1",
6
+    "old_safe": "4.9.4",
7
+    "vuln": "CVE-2020-5504",
7 8
     "detection": [
8 9
       {
9 10
         "file": "Config.class.php",
Browse code

update limesurvey

Hanno Böck authored on02/01/2020 19:03:15
Showing1 changed files
... ...
@@ -458,8 +458,8 @@
458 458
   {
459 459
     "name": "limesurvey",
460 460
     "url": "https://www.limesurvey.org/",
461
-    "safe": "3.17.14",
462
-    "vuln": "CVE-2019-16174",
461
+    "safe": "3.21.3",
462
+    "vuln": "https://www.limesurvey.org/de/limesurvey-updates/2206-limesurvey-3-21-3-build-191219-released",
463 463
     "detection": [
464 464
       {
465 465
         "file": "common.php",
Browse code

update some URLs

Hanno Böck authored on18/12/2019 21:17:57
Showing1 changed files
... ...
@@ -156,7 +156,7 @@
156 156
   },
157 157
   {
158 158
     "name": "SiteBar",
159
-    "url": "http://sitebar.org/",
159
+    "url": "https://sitebar.org/",
160 160
     "safe": "3.3.9",
161 161
     "vuln": "CVE-2007-5492",
162 162
     "detection": [
... ...
@@ -230,7 +230,7 @@
230 230
   },
231 231
   {
232 232
     "name": "cacti",
233
-    "url": "http://www.cacti.net/",
233
+    "url": "https://cacti.net/",
234 234
     "safe": "1.2.8",
235 235
     "vuln": "CVE-2019-17357",
236 236
     "detection": [
... ...
@@ -343,7 +343,7 @@
343 343
   },
344 344
   {
345 345
     "name": "awstats",
346
-    "url": "http://awstats.sourceforge.net/",
346
+    "url": "https://awstats.sourceforge.io/",
347 347
     "safe": "7.7",
348 348
     "vuln": "CVE-2017-1000501",
349 349
     "detection": [
... ...
@@ -389,7 +389,7 @@
389 389
   },
390 390
   {
391 391
     "name": "ResourceSpace",
392
-    "url": "http://www.resourcespace.org/",
392
+    "url": "https://www.resourcespace.com/",
393 393
     "safe": "4.2.2833",
394 394
     "vuln": "CVE-2011-4311",
395 395
     "latest": "4.3.2912",
... ...
@@ -432,7 +432,7 @@
432 432
   {
433 433
     "name": "PhpGedView",
434 434
     "url": "http://phpgedview.sourceforge.net/",
435
-    "safe": "",
435
+    "safe": "4.2.4",
436 436
     "vuln": "CVE-2011-0405",
437 437
     "detection": [
438 438
       {
Browse code

update various URLs to https and CVEs, update a few packages

Hanno Böck authored on16/12/2019 20:44:09
Showing1 changed files
... ...
@@ -370,14 +370,20 @@
370 370
   {
371 371
     "name": "Horde-webmail",
372 372
     "url": "http://www.horde.org/",
373
-    "safe": "1.2.7",
374
-    "vuln": "http://secunia.com/advisories/39860",
373
+    "safe": "",
374
+    "vuln": "CVE-2019-12094",
375 375
     "detection": [
376 376
       {
377 377
         "file": "bundle.php",
378 378
         "variable": "BUNDLE_VERSION",
379 379
         "subdir": 1,
380 380
         "extra_match": "'Horde Groupware Webmail Edition'"
381
+      },
382
+      {
383
+        "file": "Bundle.php",
384
+        "variable": "VERSION",
385
+        "subdir": 1,
386
+        "extra_match": "'Horde Groupware Webmail Edition'"
381 387
       }
382 388
     ]
383 389
   },
... ...
@@ -532,7 +538,7 @@
532 538
     "name": "videodb",
533 539
     "url": "http://www.videodb.net/",
534 540
     "safe": "4.0",
535
-    "vuln": "http://www.exploit-db.com/exploits/17660/",
541
+    "vuln": "https://www.exploit-db.com/exploits/17660",
536 542
     "detection": [
537 543
       {
538 544
         "file": "constants.php",
... ...
@@ -546,7 +552,7 @@
546 552
     "name": "OpenX",
547 553
     "url": "http://www.openx.com/",
548 554
     "safe": "",
549
-    "vuln": "http://www.kreativrauschen.com/blog/2013/12/18/zero-day-vulnerability-in-openx-source-2-8-11-and-revive-adserver-3-0-1/",
555
+    "vuln": "https://www.kreativrauschen.com/blog/2013/12/18/zero-day-vulnerability-in-openx-source-2-8-11-and-revive-adserver-3-0-1/",
550 556
     "detection": [
551 557
       {
552 558
         "file": "constants.php",
Browse code

update various in misc

Hanno Böck authored on16/12/2019 08:36:59
Showing1 changed files
... ...
@@ -87,7 +87,7 @@
87 87
   },
88 88
   {
89 89
     "name": "SimpNews",
90
-    "url": "http://www.boesch-it.de",
90
+    "url": "https://web.archive.org/web/20110228171938/http://www.boesch-it.de/",
91 91
     "safe": "2.48",
92 92
     "vuln": "CVE-2010-2858",
93 93
     "detection": [
... ...
@@ -101,7 +101,7 @@
101 101
   },
102 102
   {
103 103
     "name": "calendarix",
104
-    "url": "http://www.calendarix.com/",
104
+    "url": "https://web.archive.org/web/20120430200920/http://www.calendarix.com/",
105 105
     "safe": "",
106 106
     "vuln": "CVE-2007-3183",
107 107
     "detection": [
... ...
@@ -143,8 +143,8 @@
143 143
   {
144 144
     "name": "Ampache",
145 145
     "url": "http://ampache.org/",
146
-    "safe": "3.5.3",
147
-    "vuln": "http://ampache.org/2009/12/20/3-5-3-security-release/",
146
+    "safe": "4.0.0",
147
+    "vuln": "CVE-2019-12385",
148 148
     "detection": [
149 149
       {
150 150
         "file": "init.php",
... ...
@@ -216,9 +216,9 @@
216 216
   {
217 217
     "name": "Moodle",
218 218
     "url": "https://moodle.org/",
219
-    "safe": "3.2.2",
220
-    "old_safe": "3.1.5,3.0.9,2.7.19",
221
-    "vuln": "CVE-2017-2641",
219
+    "safe": "3.7.1",
220
+    "old_safe": "3.6.5,3.5.7",
221
+    "vuln": "CVE-2019-10189",
222 222
     "detection": [
223 223
       {
224 224
         "file": "version.php",
... ...
@@ -231,8 +231,8 @@
231 231
   {
232 232
     "name": "cacti",
233 233
     "url": "http://www.cacti.net/",
234
-    "safe": "0.8.7",
235
-    "vuln": "CVE-2007-6035",
234
+    "safe": "1.2.8",
235
+    "vuln": "CVE-2019-17357",
236 236
     "detection": [
237 237
       {
238 238
         "file": "global.php",
... ...
@@ -344,8 +344,8 @@
344 344
   {
345 345
     "name": "awstats",
346 346
     "url": "http://awstats.sourceforge.net/",
347
-    "safe": "7.1",
348
-    "vuln": "CVE-2012-4547",
347
+    "safe": "7.7",
348
+    "vuln": "CVE-2017-1000501",
349 349
     "detection": [
350 350
       {
351 351
         "file": "awstats.pl",
... ...
@@ -356,9 +356,9 @@
356 356
   },
357 357
   {
358 358
     "name": "phpMyFAQ",
359
-    "url": "http://www.phpmyfaq.de/",
360
-    "safe": "2.5.5",
361
-    "vuln": "http://www.phpmyfaq.de/advisory_2009-12-01.php",
359
+    "url": "https://www.phpmyfaq.de/",
360
+    "safe": "2.9.11",
361
+    "vuln": "CVE-2018-16650",
362 362
     "detection": [
363 363
       {
364 364
         "file": "phpmyfaq.spec",
... ...
@@ -411,10 +411,10 @@
411 411
   },
412 412
   {
413 413
     "name": "webtrees",
414
-    "url": "http://webtrees.net/",
414
+    "url": "https://www.webtrees.net/",
415 415
     "safe": "1.2.4",
416
-    "vuln": "http://webtrees.net/en/forums/2-open-discussion/16423-webtrees-124",
417
-    "latest": "1.2.4",
416
+    "vuln": "CVE-2014-100006",
417
+    "latest": "1.5.2",
418 418
     "detection": [
419 419
       {
420 420
         "file": "session.php",
... ...
@@ -572,10 +572,11 @@
572 572
   },
573 573
   {
574 574
     "name": "osTicket",
575
-    "url": "http://osticket.com/",
576
-    "safe": "1.8.12",
577
-    "vuln": "https://github.com/osTicket/osTicket-1.8/releases/tag/v1.8.12",
578
-    "latest": "1.9.12",
575
+    "url": "https://osticket.com/",
576
+    "safe": "1.12.1",
577
+    "old_safe": "1.10.7",
578
+    "vuln": "CVE-2019-14750",
579
+    "latest": "1.14.1",
579 580
     "detection": [
580 581
       {
581 582
         "file": "bootstrap.php",
Browse code

merge more multidetections

Hanno Böck authored on13/12/2019 18:21:59
Showing1 changed files
... ...
@@ -513,6 +513,13 @@
513 513
     "safe": "10.2.1",
514 514
     "vuln": "https://owncloud.org/security/advisories/possibility-to-extend-internal-share-permissions-using-the-api/",
515 515
     "detection": [
516
+      {
517
+        "file": "util.php",
518
+        "variable": "return '",
519
+        "subdir": 1,
520
+        "extra_match": "class OC_Util",
521
+        "note": "5.x and earlier"
522
+      },
516 523
       {
517 524
         "file": "version.php",
518 525
         "variable": "$OC_VersionString",
... ...
@@ -521,20 +528,6 @@
521 528
       }
522 529
     ]
523 530
   },
524
-  {
525
-    "name": "owncloud5",
526
-    "url": "https://owncloud.org/",
527
-    "safe": "10.2.1",
528
-    "vuln": "https://owncloud.org/security/advisories/possibility-to-extend-internal-share-permissions-using-the-api/",
529
-    "detection": [
530
-      {
531
-        "file": "util.php",
532
-        "variable": "return '",
533
-        "subdir": 1,
534
-        "extra_match": "class OC_Util"
535
-      }
536
-    ]
537
-  },
538 531
   {
539 532
     "name": "videodb",
540 533
     "url": "http://www.videodb.net/",
Browse code

unify json/no newline

Hanno Böck authored on12/12/2019 13:53:37
Showing1 changed files
... ...
@@ -605,4 +605,4 @@
605 605
       }
606 606
     ]
607 607
   }
608
-]
608
+]
609 609
\ No newline at end of file
Browse code

phplist update

Hanno Böck authored on12/12/2019 12:27:53
Showing1 changed files
... ...
@@ -281,24 +281,16 @@
281 281
     ]
282 282
   },
283 283
   {
284
-    "name": "phplist-old",
285
-    "url": "http://www.phplist.com/",
286
-    "safe": "3.2.7",
287
-    "vuln": "CVE-2016-10045",
284
+    "name": "phplist",
285
+    "url": "https://www.phplist.org/",
286
+    "safe": "3.4.3",
287
+    "vuln": "https://www.phplist.org/newslist/phplist-3-4-3-release-notes/",
288 288
     "detection": [
289 289
       {
290 290
         "file": "connect.php",
291 291
         "variable": "define(\"VERSION\"",
292 292
         "subdir": 1
293
-      }
294
-    ]
295
-  },
296
-  {
297
-    "name": "phplist",
298
-    "url": "http://www.phplist.com/",
299
-    "safe": "3.2.7",
300
-    "vuln": "CVE-2016-10045",
301
-    "detection": [
293
+      },
302 294
       {
303 295
         "file": "init.php",
304 296
         "variable": "define(\"VERSION\"",
... ...
@@ -613,4 +605,4 @@
613 605
       }
614 606
     ]
615 607
   }
616
-]
617 608
\ No newline at end of file
609
+]
Browse code

merge+update multidet limesurvey, websitebaker, roundcube

Hanno Böck authored on12/12/2019 12:18:16
Showing1 changed files
... ...
@@ -196,24 +196,16 @@
196 196
     ]
197 197
   },
198 198
   {
199
-    "name": "RoundCube-deprecated",
199
+    "name": "RoundCube",
200 200
     "url": "https://roundcube.net",
201 201
     "safe": "1.3.10",
202
-    "vuln": "CVE-2019-10740",
202
+    "vuln": "CVE-2019-15237",
203 203
     "detection": [
204 204
       {
205 205
         "file": "index.php",
206 206
         "variable": "RCMAIL_VERSION",
207 207
         "subdir": 0
208
-      }
209
-    ]
210
-  },
211
-  {
212
-    "name": "RoundCube",
213
-    "url": "https://roundcube.net",
214
-    "safe": "1.3.10",
215
-    "vuln": "CVE-2019-10740",
216
-    "detection": [
208
+      },
217 209
       {
218 210
         "file": "iniset.php",
219 211
         "variable": "RCMAIL_VERSION",
... ...
@@ -466,44 +458,31 @@
466 458
     ]
467 459
   },
468 460
   {
469
-    "name": "limesurvey18",
470
-    "url": "http://www.limesurvey.org/",
471
-    "safe": "2.07",
472
-    "vuln": "CVE-2015-5078",
461
+    "name": "limesurvey",
462
+    "url": "https://www.limesurvey.org/",
463
+    "safe": "3.17.14",
464
+    "vuln": "CVE-2019-16174",
473 465
     "detection": [
474 466
       {
475 467
         "file": "common.php",
476 468
         "variable": "$versionnumber",
477 469
         "subdir": 0,
478
-        "extra_match": "LimeSurvey"
479
-      }
480
-    ]
481
-  },
482
-  {
483
-    "name": "limesurvey19",
484
-    "url": "http://www.limesurvey.org/",
485
-    "safe": "2.07",
486
-    "vuln": "CVE-2015-5078",
487
-    "detection": [
470
+        "extra_match": "LimeSurvey",
471
+        "note": "1.8.x and earlier"
472
+      },
488 473
       {
489 474
         "file": "version.php",
490 475
         "variable": "$versionnumber",
491 476
         "subdir": 0,
492
-        "extra_match": "$dbversionnumber"
493
-      }
494
-    ]
495
-  },
496
-  {
497
-    "name": "limesurvey",
498
-    "url": "http://www.limesurvey.org/",
499
-    "safe": "2.07",
500
-    "vuln": "CVE-2015-5078",
501
-    "detection": [
477
+        "extra_match": "$dbversionnumber",
478
+        "note": "1.9.x"
479
+      },
502 480
       {
503 481
         "file": "version.php",
504 482
         "variable": "$config['versionnumber']",
505 483
         "subdir": 2,
506
-        "extra_match": "LimeSurvey"
484
+        "extra_match": "LimeSurvey",
485
+        "note": "2.x and above"
507 486
       }
508 487
     ]
509 488
   },
Browse code

merge old multidetections and update joomla,bugzilla,drupal,typo3,mantis,phpmyadmin

Hanno Böck authored on12/12/2019 09:10:29
Showing1 changed files
... ...
@@ -1,6 +1,6 @@
1 1
 [
2 2
   {
3
-    "name": "phpMyAdmin-veryold",
3
+    "name": "phpMyAdmin",
4 4
     "url": "https://www.phpmyadmin.net/",
5 5
     "safe": "4.9.2",
6 6
     "vuln": "CVE-2019-18622",
... ...
@@ -8,30 +8,16 @@
8 8
       {
9 9
         "file": "Config.class.php",
10 10
         "variable": "PMA_VERSION",
11
-        "subdir": 1
12
-      }
13
-    ]
14
-  },
15
-  {
16
-    "name": "phpMyAdmin-old",
17
-    "url": "https://www.phpmyadmin.net/",
18
-    "safe": "4.9.2",
19
-    "vuln": "CVE-2019-18622",
20
-    "detection": [
11
+        "subdir": 1,
12
+        "note": "4.5.x and older"
13
+      },
21 14
       {
22 15
         "file": "Config.php",
23 16
         "variable": "PMA_VERSION",
24 17
         "subdir": 1,
25
-        "extra_match": "namespace PMA\\libraries;"
26
-      }
27
-    ]
28
-  },
29
-  {
30
-    "name": "phpMyAdmin",
31
-    "url": "https://www.phpmyadmin.net/",
32
-    "safe": "4.9.2",
33
-    "vuln": "CVE-2019-18622",
34
-    "detection": [
18
+        "extra_match": "namespace PMA\\libraries;",
19
+        "note": "4.6.x/4.7.x"
20
+      },
35 21
       {
36 22
         "file": "Config.php",
37 23
         "variable": "PMA_VERSION",
... ...
@@ -55,24 +41,16 @@
55 41
     ]
56 42
   },
57 43
   {
58
-    "name": "Mantis-deprecated",
44
+    "name": "Mantis",
59 45
     "url": "https://mantisbt.org/",
60
-    "safe": "2.22.1",
61
-    "vuln": "CVE-2019-15715",
46
+    "safe": "2.23.0",
47
+    "vuln": "CVE-2017-18214",
62 48
     "detection": [
63 49
       {
64 50
         "file": "config_defaults_inc.php",
65 51
         "variable": "$g_mantis_version",
66 52
         "subdir": 0
67
-      }
68
-    ]
69
-  },
70
-  {
71
-    "name": "Mantis",
72
-    "url": "https://mantisbt.org/",
73
-    "safe": "2.22.1",
74
-    "vuln": "CVE-2019-15715",
75
-    "detection": [
53
+      },
76 54
       {
77 55
         "file": "constant_inc.php",
78 56
         "variable": "MANTIS_VERSION",
... ...
@@ -81,30 +59,29 @@
81 59
     ]
82 60
   },
83 61
   {
84
-    "name": "Bugzilla3",
62
+    "name": "Bugzilla",
85 63
     "url": "https://www.bugzilla.org/",
86
-    "safe": "4.4.7",
87
-    "old_safe": "4.2.12,4.0.16",
88
-    "vuln": "CVE-2011-2379",
64
+    "safe": "5.0.4",
65
+    "old_safe": "4.4.13",
66
+    "vuln": "CVE-2018-5123",
89 67
     "detection": [
90 68
       {
91
-        "file": "Constants.pm",
92
-        "variable": "BUGZILLA_VERSION",
93
-        "subdir": 1
94
-      }
95
-    ]
96
-  },
97
-  {
98
-    "name": "Bugzilla2",
99
-    "url": "https://www.bugzilla.org/",
100
-    "safe": "4.4.7",
101
-    "old_safe": "4.2.12,4.0.16",
102
-    "vuln": "CVE-2011-2379",
103
-    "detection": [
69
+        "file": "globals.pl",
70
+        "variable": "$::param{'version'}",
71
+        "subdir": 0,
72
+        "note": "2.14.x and older"
73
+      },
104 74
       {
105 75
         "file": "Config.pm",
106 76
         "variable": "$Bugzilla::Config::VERSION",
107
-        "subdir": 1
77
+        "subdir": 1,
78
+        "note": "2.16.x - 2.23.x"
79
+      },
80
+      {
81
+        "file": "Constants.pm",
82
+        "variable": "BUGZILLA_VERSION",
83
+        "subdir": 1,
84
+        "note": "3.x and newer"
108 85
       }
109 86
     ]
110 87
   },
Browse code

add json db

Hanno Böck authored on11/12/2019 18:39:41
Showing1 changed files
1 1
new file mode 100644
... ...
@@ -0,0 +1,660 @@
1
+[
2
+  {
3
+    "name": "phpMyAdmin-veryold",
4
+    "url": "https://www.phpmyadmin.net/",
5
+    "safe": "4.9.2",
6
+    "vuln": "CVE-2019-18622",
7
+    "detection": [
8
+      {
9
+        "file": "Config.class.php",
10
+        "variable": "PMA_VERSION",
11
+        "subdir": 1
12
+      }
13
+    ]
14
+  },
15
+  {
16
+    "name": "phpMyAdmin-old",
17
+    "url": "https://www.phpmyadmin.net/",
18
+    "safe": "4.9.2",
19
+    "vuln": "CVE-2019-18622",
20
+    "detection": [
21
+      {
22
+        "file": "Config.php",
23
+        "variable": "PMA_VERSION",
24
+        "subdir": 1,
25
+        "extra_match": "namespace PMA\\libraries;"
26
+      }
27
+    ]
28
+  },
29
+  {
30
+    "name": "phpMyAdmin",
31
+    "url": "https://www.phpmyadmin.net/",
32
+    "safe": "4.9.2",
33
+    "vuln": "CVE-2019-18622",
34
+    "detection": [
35
+      {
36
+        "file": "Config.php",
37
+        "variable": "PMA_VERSION",
38
+        "subdir": 2,
39
+        "extra_match": "namespace PhpMyAdmin;"
40
+      }
41
+    ]
42
+  },
43
+  {
44
+    "name": "SquirrelMail",
45
+    "url": "https://squirrelmail.org/",
46
+    "safe": "1.4.22",
47
+    "vuln": "CVE-2010-4554",
48
+    "detection": [
49
+      {
50
+        "file": "strings.php",
51
+        "variable": "$version",
52
+        "subdir": 1,
53
+        "extra_match": "SquirrelMail version number"
54
+      }
55
+    ]
56
+  },
57
+  {
58
+    "name": "Mantis-deprecated",
59
+    "url": "https://mantisbt.org/",
60
+    "safe": "2.22.1",
61
+    "vuln": "CVE-2019-15715",
62
+    "detection": [
63
+      {
64
+        "file": "config_defaults_inc.php",
65
+        "variable": "$g_mantis_version",
66
+        "subdir": 0
67
+      }
68
+    ]
69
+  },
70
+  {
71
+    "name": "Mantis",
72
+    "url": "https://mantisbt.org/",
73
+    "safe": "2.22.1",
74
+    "vuln": "CVE-2019-15715",
75
+    "detection": [
76
+      {
77
+        "file": "constant_inc.php",
78
+        "variable": "MANTIS_VERSION",
79
+        "subdir": 1
80
+      }
81
+    ]
82
+  },
83
+  {
84
+    "name": "Bugzilla3",
85
+    "url": "https://www.bugzilla.org/",
86
+    "safe": "4.4.7",
87
+    "old_safe": "4.2.12,4.0.16",
88
+    "vuln": "CVE-2011-2379",
89
+    "detection": [
90
+      {
91
+        "file": "Constants.pm",
92
+        "variable": "BUGZILLA_VERSION",
93
+        "subdir": 1
94
+      }
95
+    ]
96
+  },
97
+  {
98
+    "name": "Bugzilla2",
99
+    "url": "https://www.bugzilla.org/",
100
+    "safe": "4.4.7",
101
+    "old_safe": "4.2.12,4.0.16",
102
+    "vuln": "CVE-2011-2379",
103
+    "detection": [
104
+      {
105
+        "file": "Config.pm",
106
+        "variable": "$Bugzilla::Config::VERSION",
107
+        "subdir": 1
108
+      }
109
+    ]
110
+  },
111
+  {
112
+    "name": "SimpNews",
113
+    "url": "http://www.boesch-it.de",
114
+    "safe": "2.48",
115
+    "vuln": "CVE-2010-2858",
116
+    "detection": [
117
+      {
118
+        "file": "global.inc.php",
119
+        "variable": "$version",
120
+        "subdir": 1,
121
+        "extra_match": "$path_simpnews"
122
+      }
123
+    ]
124
+  },
125
+  {
126
+    "name": "calendarix",
127
+    "url": "http://www.calendarix.com/",
128
+    "safe": "",
129
+    "vuln": "CVE-2007-3183",
130
+    "detection": [
131
+      {
132
+        "file": "cal_config.inc.php",
133
+        "variable": "$version",
134
+        "subdir": 0
135
+      }
136
+    ]
137
+  },
138
+  {
139
+    "name": "myEvent",
140
+    "url": "http://mywebland.com/",
141
+    "safe": "",
142
+    "vuln": "CVE-2007-0690",
143
+    "detection": [
144
+      {
145
+        "file": "config.php",
146
+        "variable": "$version",
147
+        "subdir": 0,
148
+        "extra_match": "$eventbgcolor"
149
+      }
150
+    ]
151
+  },
152
+  {
153
+    "name": "php-stats",
154
+    "url": "http://php-stats.com/",
155
+    "safe": "",
156
+    "vuln": "CVE-2007-5453",
157
+    "detection": [
158
+      {
159
+        "file": "update.php",
160
+        "variable": "$version",
161
+        "subdir": 0,
162
+        "extra_match": "http://php-stats.com/"
163
+      }
164
+    ]
165
+  },
166
+  {
167
+    "name": "Ampache",
168
+    "url": "http://ampache.org/",
169
+    "safe": "3.5.3",
170
+    "vuln": "http://ampache.org/2009/12/20/3-5-3-security-release/",
171
+    "detection": [
172
+      {
173
+        "file": "init.php",
174
+        "variable": "$results['version']",
175
+        "subdir": 1,
176
+        "extra_match": "$ampache_path"
177
+      }
178
+    ]
179
+  },
180
+  {
181
+    "name": "SiteBar",
182
+    "url": "http://sitebar.org/",
183
+    "safe": "3.3.9",
184
+    "vuln": "CVE-2007-5492",
185
+    "detection": [
186
+      {
187
+        "file": "database.inc.php",
188
+        "variable": "SB_CURRENT_RELEASE",
189
+        "subdir": 1
190
+      }
191
+    ]
192
+  },
193
+  {
194
+    "name": "phpPgAdmin",
195
+    "url": "http://phppgadmin.sourceforge.net/",
196
+    "safe": "5.0.4",
197
+    "vuln": "CVE-2012-1600",
198
+    "detection": [
199
+      {
200
+        "file": "lib.inc.php",
201
+        "variable": "$appVersion",
202
+        "subdir": 1,
203
+        "extra_match": "phpPgAdmin"
204
+      }
205
+    ]
206
+  },
207
+  {
208
+    "name": "FTP Admin",
209
+    "url": "http://ftpadmin.sourceforge.net/",
210
+    "safe": "",
211
+    "vuln": "CVE-2007-6234",
212
+    "detection": [
213
+      {
214
+        "file": "session_start.php",
215
+        "variable": "VERSION",
216
+        "subdir": 0,
217
+        "extra_match": "define(\"TITLE\", \"FTP Admin\");"
218
+      }
219
+    ]
220
+  },
221
+  {
222
+    "name": "RoundCube-deprecated",
223
+    "url": "https://roundcube.net",
224
+    "safe": "1.3.10",
225
+    "vuln": "CVE-2019-10740",
226
+    "detection": [
227
+      {
228
+        "file": "index.php",
229
+        "variable": "RCMAIL_VERSION",
230
+        "subdir": 0
231
+      }
232
+    ]
233
+  },
234
+  {
235
+    "name": "RoundCube",
236
+    "url": "https://roundcube.net",
237
+    "safe": "1.3.10",
238
+    "vuln": "CVE-2019-10740",
239
+    "detection": [
240
+      {
241
+        "file": "iniset.php",
242
+        "variable": "RCMAIL_VERSION",
243
+        "subdir": 2
244
+      }
245
+    ]
246
+  },
247
+  {
248
+    "name": "Moodle",
249
+    "url": "https://moodle.org/",
250
+    "safe": "3.2.2",
251
+    "old_safe": "3.1.5,3.0.9,2.7.19",
252
+    "vuln": "CVE-2017-2641",
253
+    "detection": [
254
+      {
255
+        "file": "version.php",
256
+        "variable": "$release",
257
+        "subdir": 0,
258
+        "extra_match": "MOODLE VERSION INFORMATION"
259
+      }
260
+    ]
261
+  },
262
+  {
263
+    "name": "cacti",
264
+    "url": "http://www.cacti.net/",
265
+    "safe": "0.8.7",
266
+    "vuln": "CVE-2007-6035",
267
+    "detection": [
268
+      {
269
+        "file": "global.php",
270
+        "variable": "$config[\"cacti_version\"]",
271
+        "subdir": 1
272
+      }
273
+    ]
274
+  },
275
+  {
276
+    "name": "gnopaste",
277
+    "url": "http://gnopaste.sf.net/",
278
+    "safe": "0.5.4",
279
+    "vuln": "CVE-2006-2834",
280
+    "detection": [
281
+      {
282
+        "file": "install.php",
283
+        "variable": "$_SESSION['page_title'] = 'gnopaste",
284
+        "subdir": 0
285
+      }
286
+    ]
287
+  },
288
+  {
289
+    "name": "Flyspray",
290
+    "url": "http://www.flyspray.org/",
291
+    "safe": "0.9.9.7",
292
+    "vuln": "CVE-2012-1058",
293
+    "detection": [
294
+      {
295
+        "file": "class.flyspray.php",
296
+        "variable": "var $version",
297
+        "subdir": 1
298
+      }
299
+    ]
300
+  },
301
+  {
302
+    "name": "phpMyID",
303
+    "url": "http://siege.org/projects/phpMyID",
304
+    "safe": "",
305
+    "vuln": "CVE-2008-4730",
306
+    "detection": [
307
+      {
308
+        "file": "MyID.php",
309
+        "variable": "@version",
310
+        "subdir": 0
311
+      }
312
+    ]
313
+  },
314
+  {
315
+    "name": "phplist-old",
316
+    "url": "http://www.phplist.com/",
317
+    "safe": "3.2.7",
318
+    "vuln": "CVE-2016-10045",
319
+    "detection": [
320
+      {
321
+        "file": "connect.php",
322
+        "variable": "define(\"VERSION\"",
323
+        "subdir": 1
324
+      }
325
+    ]
326
+  },
327
+  {
328
+    "name": "phplist",
329
+    "url": "http://www.phplist.com/",
330
+    "safe": "3.2.7",
331
+    "vuln": "CVE-2016-10045",
332
+    "detection": [
333
+      {
334
+        "file": "init.php",
335
+        "variable": "define(\"VERSION\"",
336
+        "subdir": 1
337
+      }
338
+    ]
339
+  },
340
+  {</