Publish Advisories

GHSA-6j8f-88mh-r9vq GHSA-x2fr-vj74-5h35
github · Oct 29, 2024 · 32d7113 · 32d7113
1 parent ce71143
commit 32d7113
Show file tree

Hide file tree

Showing 2 changed files with 19 additions and 4 deletions.
diff --git a/advisories/github-reviewed/2024/10/GHSA-6j8f-88mh-r9vq/GHSA-6j8f-88mh-r9vq.json b/advisories/github-reviewed/2024/10/GHSA-6j8f-88mh-r9vq/GHSA-6j8f-88mh-r9vq.json
@@ -1,15 +1,22 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-6j8f-88mh-r9vq",
-  "modified": "2024-10-25T21:47:13Z",
+  "modified": "2024-10-29T21:50:14Z",
   "published": "2024-10-25T21:31:27Z",
   "aliases": [
     "CVE-2024-48224"
   ],
   "summary": "SQL injection in funadmin",
   "details": "Funadmin v5.0.2 has an arbitrary file read vulnerability in /curd/index/editfile.",
   "severity": [
-
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P"
+    }
   ],
   "affected": [
     {
@@ -48,6 +55,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-22",
       "CWE-89"
     ],
     "severity": "HIGH",

diff --git a/advisories/github-reviewed/2024/10/GHSA-x2fr-vj74-5h35/GHSA-x2fr-vj74-5h35.json b/advisories/github-reviewed/2024/10/GHSA-x2fr-vj74-5h35/GHSA-x2fr-vj74-5h35.json
@@ -1,15 +1,22 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-x2fr-vj74-5h35",
-  "modified": "2024-10-25T21:46:55Z",
+  "modified": "2024-10-29T21:49:58Z",
   "published": "2024-10-25T21:31:27Z",
   "aliases": [
     "CVE-2024-48223"
   ],
   "summary": "SQL injection in funadmin",
   "details": "Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist.",
   "severity": [
-
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+    },
+    {
+      "type": "CVSS_V4",
+      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P"
+    }
   ],
   "affected": [
     {