From 5e3e0551fa465e2fdae260e6d912f653472a183c Mon Sep 17 00:00:00 2001
From: security tracker role <sectracker@soriano.debian.org>
Date: Fri, 1 Jan 2021 08:10:18 +0000
Subject: automatic update

---
 data/CVE/2016.list | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

(limited to 'data/CVE/2016.list')

diff --git a/data/CVE/2016.list b/data/CVE/2016.list
index 454b6a59a8..1ca0db0a9f 100644
--- a/data/CVE/2016.list
+++ b/data/CVE/2016.list
@@ -1,3 +1,19 @@
+CVE-2016-20008 (The REST/JSON project 7.x-1.x for Drupal allows session enumeration, a ...)
+	TODO: check
+CVE-2016-20007 (The REST/JSON project 7.x-1.x for Drupal allows session name guessing, ...)
+	TODO: check
+CVE-2016-20006 (The REST/JSON project 7.x-1.x for Drupal allows blockage of user login ...)
+	TODO: check
+CVE-2016-20005 (The REST/JSON project 7.x-1.x for Drupal allows user registration bypa ...)
+	TODO: check
+CVE-2016-20004 (The REST/JSON project 7.x-1.x for Drupal allows field access bypass, a ...)
+	TODO: check
+CVE-2016-20003 (The REST/JSON project 7.x-1.x for Drupal allows user enumeration, aka  ...)
+	TODO: check
+CVE-2016-20002 (The REST/JSON project 7.x-1.x for Drupal allows comment access bypass, ...)
+	TODO: check
+CVE-2016-20001 (The REST/JSON project 7.x-1.x for Drupal allows node access bypass, ak ...)
+	TODO: check
 CVE-2016-15001
 	REJECTED
 CVE-2016-11086 (lib/oauth/consumer.rb in the oauth-ruby gem through 0.5.4 for Ruby doe ...)
-- 
cgit v1.2.3