From 3fc43a98887890219f2025f1867a096b728ff738 Mon Sep 17 00:00:00 2001 From: Sven Brunk Date: Thu, 18 Jun 2026 15:18:10 +0200 Subject: [PATCH] Improve GHSA-qqcr-9jfc-35c4 --- .../GHSA-qqcr-9jfc-35c4.json | 45 ++++++++++++++++++- 1 file changed, 43 insertions(+), 2 deletions(-) diff --git a/advisories/github-reviewed/2025/05/GHSA-qqcr-9jfc-35c4/GHSA-qqcr-9jfc-35c4.json b/advisories/github-reviewed/2025/05/GHSA-qqcr-9jfc-35c4/GHSA-qqcr-9jfc-35c4.json index d2b3cca686d49..1475fb643d31b 100644 --- a/advisories/github-reviewed/2025/05/GHSA-qqcr-9jfc-35c4/GHSA-qqcr-9jfc-35c4.json +++ b/advisories/github-reviewed/2025/05/GHSA-qqcr-9jfc-35c4/GHSA-qqcr-9jfc-35c4.json @@ -1,7 +1,7 @@ { "schema_version": "1.4.0", "id": "GHSA-qqcr-9jfc-35c4", - "modified": "2025-05-14T17:33:45Z", + "modified": "2025-05-14T17:33:46Z", "published": "2025-05-13T18:30:52Z", "aliases": [ "CVE-2024-56526" @@ -20,6 +20,25 @@ "ecosystem": "Packagist", "name": "oxid-esales/oxideshop-ce" }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "6.0.0" + }, + { + "fixed": "6.14.4" + } + ] + } + ] + }, + { + "package": { + "ecosystem": "Packagist", + "name": "oxid-esales/smarty-component" + }, "ranges": [ { "type": "ECOSYSTEM", @@ -28,7 +47,29 @@ "introduced": "0" }, { - "last_affected": "7.0.5" + "fixed": "1.0.1" + } + ] + } + ], + "database_specific": { + "last_known_affected_version_range": "<= 1.0.0" + } + }, + { + "package": { + "ecosystem": "Packagist", + "name": "oxid-esales/oxideshop-metapackage-ce" + }, + "ranges": [ + { + "type": "ECOSYSTEM", + "events": [ + { + "introduced": "6.0.0" + }, + { + "fixed": "6.5.5" } ] }