[Secure-testing-commits] r4355 - data/CVE
Alec Berryman
alec-guest at costa.debian.org
Sat Jul 8 15:41:22 UTC 2006
Author: alec-guest
Date: 2006-07-08 15:41:20 +0000 (Sat, 08 Jul 2006)
New Revision: 4355
Modified:
data/CVE/list
Log:
NOT-FOR-US
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-07-08 10:53:35 UTC (rev 4354)
+++ data/CVE/list 2006-07-08 15:41:20 UTC (rev 4355)
@@ -67,21 +67,21 @@
CVE-2006-3320 (Cross-site scripting (XSS) vulnerability in command.php in SiteBar ...)
- sitebar <unfixed> (bug #377299; low)
CVE-2006-3319 (Cross-site scripting (XSS) vulnerability in rss/index.php in PHP ...)
- TODO: check
+ NOT-FOR-US: PHP iCalendar
CVE-2006-3318 (SQL injection vulnerability in register.php for phpRaid 3.0.6 and ...)
- TODO: check
+ NOT-FOR-US: phpRaid
CVE-2006-3317 (PHP remote file inclusion vulnerability in phpRaid 3.0.6 allows remote ...)
- TODO: check
+ NOT-FOR-US: phpRaid
CVE-2006-3316 (Multiple PHP remote file inclusion vulnerabilities in phpRaid 3.0.5 ...)
- TODO: check
+ NOT-FOR-US: phpRaid
CVE-2006-3315 (PHP remote file inclusion vulnerability in page.php in an unspecified ...)
- TODO: check
+ NOT-FOR-US: "unspecified RahnemaCo.com product, possibly eShop"
CVE-2006-3314 (PHP remote file inclusion vulnerability in page.php in an unspecified ...)
- TODO: check
+ NOT-FOR-US: "unspecified RahnemaCo.com product, possibly eShop"
CVE-2006-3313 (Cross-site scripting (XSS) vulnerability in search.jsp in Netsoft ...)
- TODO: check
+ NOT-FOR-US: Netsoft smartNet
CVE-2006-3312 (Multiple cross-site scripting (XSS) vulnerabilities in ashmans and ...)
- TODO: check
+ NOT-FOR-US: QaTraq
CVE-2006-3311
RESERVED
CVE-2006-XXXX [several setuid privledge escalations]
@@ -175,7 +175,7 @@
CVE-2006-3269 (PHP remote file inclusion vulnerability in includes/functions_cms.php ...)
NOT-FOR-US: THoRCMS
CVE-2006-3268 (Unspecified vulnerability in the Windows Client API in Novell ...)
- TODO: check
+ NOT-FOR-US: Novell GroupWise
CVE-2006-3267 (SQL injection vulnerability in index.php in Infinite Core Technologies ...)
NOT-FOR-US: Infinite Core Technologies
CVE-2006-3266 (Multiple PHP remote file inclusion vulnerabilities in Bee-hive Lite ...)
@@ -211,31 +211,31 @@
CVE-2006-3251 (Heap-based buffer overflow in the array_push function in hashcash.c ...)
- hashcash 1.21
CVE-2006-3250 (Heap-based buffer overflow in Windows Live Messenger 8.0 allows ...)
- TODO: check
+ NOT-FOR-US: Windows Live Messenger
CVE-2006-3249 (** DISPUTED ** ...)
- TODO: check
+ NOT-FOR-US: Phorum
CVE-2006-3248 (SQL injection vulnerability in calendar.php in Codewalkers PHP Event ...)
- TODO: check
+ NOT-FOR-US: PHP Event Calendar
CVE-2006-3247 (Multiple cross-site scripting (XSS) vulnerabilities in show.php in ...)
- TODO: check
+ NOT-FOR-US: GL-SH Deaf Forum
CVE-2006-3246 (Cross-site scripting (XSS) vulnerability in show.php in GL-SH Deaf ...)
- TODO: check
+ NOT-FOR-US: GL-SH Deaf Forum
CVE-2006-3245 (Multiple cross-site scripting (XSS) vulnerabilities in activatemember ...)
- TODO: check
+ NOT-FOR-US: mvnForum
CVE-2006-3244 (Multiple SQL injection vulnerabilities in Anthill 0.2.6 and earlier ...)
- TODO: check
+ NOT-FOR-US: Anthill
CVE-2006-3243 (SQL injection vulnerability in usercp.php in MyBB (MyBulletinBoard) ...)
- TODO: check
+ NOT-FOR-US: MyBB
CVE-2006-3242 (Stack-based buffer overflow in the browse_get_namespace function in ...)
- mutt 1.5.11+cvs20060403-2 (low; bug #375828)
CVE-2006-3241 (Cross-site scripting (XSS) vulnerability in messages.php in XennoBB ...)
- TODO: check
+ NOT-FOR-US: XennoBB
CVE-2006-3240 (Cross-site scripting (XSS) vulnerability in classes/ui.class.php in ...)
- TODO: check
+ NOT-FOR-US: dotProject
CVE-2006-3239 (SQL injection vulnerability in message.php in VBZooM 1.11 and earlier ...)
- TODO: check
+ NOT-FOR-US: VBZooM
CVE-2006-3238 (Multiple SQL injection vulnerabilities in VBZooM 1.00 and earlier ...)
- TODO: check
+ NOT-FOR-US: VBZooM
CVE-2006-3237 (Cross-site scripting (XSS) vulnerability in index.php in Enterprise ...)
TODO: check
CVE-2006-3236 (Multiple SQL injection vulnerabilities in thinkWMS 1.0 and earlier ...)
More information about the Secure-testing-commits
mailing list