[Secure-testing-commits] r2707 - data/CVE
Florian Weimer
fw at costa.debian.org
Thu Nov 10 06:54:42 UTC 2005
Author: fw
Date: 2005-11-10 06:54:37 +0000 (Thu, 10 Nov 2005)
New Revision: 2707
Modified:
data/CVE/list
Log:
downgrade wordpress vulnerability
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-11-10 06:48:21 UTC (rev 2706)
+++ data/CVE/list 2005-11-10 06:54:37 UTC (rev 2707)
@@ -362,7 +362,9 @@
CVE-2005-3331 (viewpatch in mgdiff 1.0 allows local users to overwrite arbitrary ...)
- mgdiff 1.0-28 (bug #335188; unimportant)
CVE-2005-3330 (The _httpsrequest function in Snoopy 1.2, as used in products such as ...)
- - wordpress <unfixed> (bug #335817; high)
+ - wordpress <unfixed> (bug #335817; unimportant)
+ NOTE: The vulnerability is only exposed if the administrator edits
+ NOTE: non-configuration PHP files and adds https:// URLs.
CVE-2005-3329 (Cross-site scripting (XSS) vulnerability in RSA Authentication Agent ...)
NOT-FOR-US: RSA Authentication Agent
CVE-2005-3328 (PHP remote file inclusion vulnerability in common.php in PunBB 1.1.2 ...)
More information about the Secure-testing-commits
mailing list