[Secure-testing-commits] r7690 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sat Dec 22 13:42:30 UTC 2007
Author: nion
Date: 2007-12-22 13:42:29 +0000 (Sat, 22 Dec 2007)
New Revision: 7690
Modified:
data/CVE/list
Log:
typo3-src bug and comment added
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-12-22 13:40:27 UTC (rev 7689)
+++ data/CVE/list 2007-12-22 13:42:29 UTC (rev 7690)
@@ -328,7 +328,8 @@
CVE-2007-6382 (The Event Dispatch Thread in Robocode before 1.5.1 allows remote ...)
NOT-FOR-US: Robocode
CVE-2007-6381 (SQL injection vulnerability in the indexed_search system extension in ...)
- - typo3-src <unfixed>
+ - typo3-src <unfixed> (low; bug #457446)
+ NOTE: you need to be a logged in backend user to exploit this
CVE-2007-6380 (Multiple SQL injection vulnerabilities in e-Xoops (exoops) 1.08, and ...)
NOT-FOR-US: e-Xoops
CVE-2007-6379 (BadBlue 2.72b and earlier allows remote attackers to obtain sensitive ...)
More information about the Secure-testing-commits
mailing list