[Secure-testing-commits] r4165 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Thu Jun 8 12:28:47 UTC 2006
Author: jmm-guest
Date: 2006-06-08 12:28:44 +0000 (Thu, 08 Jun 2006)
New Revision: 4165
Modified:
data/CVE/list
Log:
drupal CVEfied
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2006-06-08 11:33:47 UTC (rev 4164)
+++ data/CVE/list 2006-06-08 12:28:44 UTC (rev 4165)
@@ -405,9 +405,9 @@
CVE-2006-2744 (PHP remote file inclusion vulnerability in p-popupgallery.php in ...)
TODO: check
CVE-2006-2743 (Drupal 4.6.x before 4.6.7 and 4.7.0, when running on Apache with ...)
- TODO: check
+ - drupal <unfixed> (bug #368835; medium)
CVE-2006-2742 (SQL injection vulnerability in Drupal 4.6.x before 4.6.7 and 4.7.0 ...)
- TODO: check
+ - drupal <unfixed> (medium)
CVE-2006-2741 (Cross-site scripting (XSS) vulnerability in Epicdesigns tinyBB 0.3 ...)
TODO: check
CVE-2006-2740 (Multiple SQL injection vulnerabilities in Epicdesigns tinyBB 0.3 allow ...)
@@ -606,9 +606,6 @@
- mkvtoolnix <unfixed> (bug #370144; low)
CVE-2006-XXXX ['Cache' shell injection vulnerability]
- wordpress 2.0.3-1 (high; bug #369014)
-CVE-2006-XXXX [drupal: Execution of arbitrary files in certain Apache configurations]
- - drupal <unfixed> (bug #368835; medium)
- NOTE: Micah requested CVE, June 6, 2006
CVE-2006-2753 (SQL injection vulnerability in MySQL 4.1.x before 4.1.20 and 5.0.x ...)
- mysql-dfsg <not-affected> (Vulnerable code was introduced in 4.1)
- mysql <not-affected> (Vulnerable code was introduced in 4.1)
More information about the Secure-testing-commits
mailing list