[Secure-testing-commits] r5249 - data/CVE
Alex de Oliveira Silva
enerv-guest at alioth.debian.org
Fri Jan 12 14:46:23 CET 2007
Author: enerv-guest
Date: 2007-01-12 14:46:21 +0100 (Fri, 12 Jan 2007)
New Revision: 5249
Modified:
data/CVE/list
Log:
Update CVEs entries, changed severity in CVE-2006-6772 to high.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-01-12 12:51:34 UTC (rev 5248)
+++ data/CVE/list 2007-01-12 13:46:21 UTC (rev 5249)
@@ -124,13 +124,13 @@
CVE-2007-0149 (EMembersPro 1.0 stores sensitive information under the web root with ...)
NOT-FOR-US: EMembersPro
CVE-2007-0148 (Format string vulnerability in OmniGroup OmniWeb 5.5.1 allows remote ...)
- TODO: check
+ TODO: OminiGroup
CVE-2007-0147 (Cuyahoga before 1.0.1 installs the FCKEditor component with an ...)
- TODO: check
+ NOT-FOR-US: Cuyahoga
CVE-2007-0146 (Multiple cross-site scripting (XSS) vulnerabilities in Fix and Chips ...)
- TODO: check
+ TODO: Fix and Chips
CVE-2007-0145 (PHP remote file inclusion vulnerability in bn_smrep1.php in BinGoPHP ...)
- TODO: check
+ TODO: BinGoPHP
CVE-2007-0144 (Cross-site scripting (XSS) vulnerability in search.asp in Digitizing ...)
TODO: check
CVE-2007-0143 (Multiple PHP remote file inclusion vulnerabilities in NUNE News Script ...)
@@ -721,7 +721,7 @@
CVE-2006-6773 (pages/register/register.php in Fishyshoop 0.930 beta allows remote ...)
NOT-FOR-US: Fishyshoop
CVE-2006-6772 (Format string vulnerability in w3m 0.5.1, when run with the dump or ...)
- - w3m 0.5.1-5.1 (low; bug #404564)
+ - w3m 0.5.1-5.1 (bug #404564; high)
TODO: Check w3mee, is this forked version still needed?
CVE-2006-6771 (Multiple PHP remote file inclusion vulnerabilities in Irokez CMS 0.7.1 ...)
NOT-FOR-US: Irokez CMS
More information about the Secure-testing-commits
mailing list