[Secure-testing-commits] r4361 - data/CVE

[Stefan Fritsch]

Author: stef-guest
Date: 2006-07-09 17:55:50 +0000 (Sun, 09 Jul 2006)
New Revision: 4361

Modified:
   data/CVE/list
Log:
tikiwiki fixed and uploaded to unstable.
new trac issues.


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2006-07-09 11:21:05 UTC (rev 4360)
+++ data/CVE/list	2006-07-09 17:55:50 UTC (rev 4361)
@@ -1,3 +1,5 @@
+CVE-2006-XXXX [trac: reStructuredText breach of privacy and denial of service]
+	- trac 0.9.6-1
 CVE-2006-3458 [information disclosure vulnerability in Zope2]
 	- zope2.7 <unfixed> (bug #377285; medium)
 	- zope2.8 <unfixed> (bug #377277; medium)
@@ -625,11 +627,9 @@
 CVE-2006-3049 (Multiple cross-site scripting (XSS) vulnerabilities in booking3.php in ...)
 	NOT-FOR-US: Mole Group Ticket Booking Script
 CVE-2006-3048 (SQL injection vulnerability in TikiWiki 1.9.3.2 and possibly earlier ...)
-	- tikiwiki <unfixed> (medium)
-	NOTE: only in experimental
+	- tikiwiki 1.9.4-1 (medium)
 CVE-2006-3047 (Cross-site scripting (XSS) vulnerability in TikiWiki 1.9.3.2 and ...)
-	- tikiwiki <unfixed> (medium)
-	NOTE: only in experimental
+	- tikiwiki 1.9.4-1 (medium)
 CVE-2006-3046 (Unspecified vulnerability in the admin login feature in Subtext 1.5, ...)
 	NOT-FOR-US: Subtext
 CVE-2006-3045 (PHP remote file inclusion vulnerability in manage_songs.php in Foing ...)
@@ -1590,8 +1590,7 @@
 CVE-2006-2636 (newsadmin.asp in Katy Whitton NewsCMSLite allows remote attackers to ...)
 	NOT-FOR-US: Katy Whitton NewsCMSLite
 CVE-2006-2635 (Multiple cross-site scripting (XSS) vulnerabilities in Tikiwiki (aka ...)
-	- tikiwiki <unfixed> (medium)
-	NOTE: only in experimental
+	- tikiwiki 1.9.4-1 (medium)
 CVE-2006-2634 (Cross-site scripting (XSS) vulnerability in Neocrome Land Down Under ...)
 	NOT-FOR-US: Neocrome Seditio
 CVE-2006-2633 (Absolute path traversal vulnerability in the copy action in index.php ...)