data/CVE/list

@@ -21,7 +21,7 @@ CVE-2019-6980
 CVE-2019-6979 (An issue was discovered in the User IP History Logs (aka ...)
 	NOT-FOR-US: IP History Logs plugin for MyBB
 CVE-2018-20745 (Yii 2.x through 2.0.15.1 actively converts a wildcard CORS policy into ...)
-	TODO: check
+	- yii <itp> (bug #597899)
 CVE-2018-20744 (The Olivier Poitrey Go CORS handler through 1.3.0 actively converts a ...)
 	TODO: check
 CVE-2019-6978 (The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the ...)
@@ -54271,9 +54271,9 @@ CVE-2018-6012 (The 'Weather Service' feature of the Green Electronics RainMachin
 CVE-2018-6011 (The time-based one-time-password (TOTP) function in the application ...)
 	NOT-FOR-US: Green Electronics
 CVE-2018-6010 (In Yii Framework 2.x before 2.0.14, remote attackers could obtain ...)
-	NOT-FOR-US: Yii Framework
+	- yii <itp> (bug #597899)
 CVE-2018-6009 (In Yii Framework 2.x before 2.0.14, the switchIdentity function in ...)
-	NOT-FOR-US: Yii Framework
+	- yii <itp> (bug #597899)
 CVE-2018-6008 (Arbitrary File Download exists in the Jtag Members Directory 5.3.7 ...)
 	NOT-FOR-US: Jtag Members Directory component for Joomla!
 CVE-2018-6007 (CSRF exists in the JS Support Ticket 1.1.0 component for Joomla! and ...)