[Secure-testing-commits] r6003 - data/CVE

fw at alioth.debian.org fw at alioth.debian.org
Sat Jun 16 08:14:51 UTC 2007


Author: fw
Date: 2007-06-16 08:14:50 +0000 (Sat, 16 Jun 2007)
New Revision: 6003

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-06-16 08:14:25 UTC (rev 6002)
+++ data/CVE/list	2007-06-16 08:14:50 UTC (rev 6003)
@@ -3,63 +3,63 @@
 CVE-2007-3245 (IRC Services before 5.0.62, and 5.1 before 5.1pre3, allows remote ...)
 	TODO: check
 CVE-2007-3244 (SQL injection vulnerability in bb-includes/formatting-functions.php in ...)
-	TODO: check
+	NOT-FOR-US: bbPress
 CVE-2007-3243 (Cross-site scripting (XSS) vulnerability in bb-login.php in bbPress ...)
-	TODO: check
+	NOT-FOR-US: bbPress
 CVE-2007-3242 (The Menu Manager Mod for (1) web-app.net WebAPP (aka WebAPP NE) ...)
-	TODO: check
+	NOT-FOR-US: WebAPP
 CVE-2007-3241 (Cross-site scripting (XSS) vulnerability in blogroll.php in the ...)
-	TODO: check
+	NOT-FOR-US: cordobo-green-park theme for WordPress
 CVE-2007-3240 (Cross-site scripting (XSS) vulnerability in 404.php in the ...)
-	TODO: check
+	NOT-FOR-US: Vistered-Little theme for WordPress
 CVE-2007-3239 (Cross-site scripting (XSS) vulnerability in searchform.php in the ...)
-	TODO: check
+	NOT-FOR-US: AndyBlue theme for WordPress
 CVE-2007-3238 (Cross-site scripting (XSS) vulnerability in functions.php in the ...)
 	TODO: check
 CVE-2007-3237 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: XOOPS
 CVE-2007-3236 (PHP remote file inclusion vulnerability in footer.php in the Horoscope ...)
-	TODO: check
+	NOT-FOR-US: XOOPS
 CVE-2007-3235 (Cross-site scripting (XSS) vulnerability in low.php in Fuzzylime Forum ...)
-	TODO: check
+	NOT-FOR-US: Fuzzylime Forum
 CVE-2007-3234 (SQL injection vulnerability in low.php in Fuzzylime Forum 1.0 allows ...)
-	TODO: check
+	NOT-FOR-US: Fuzzylime Forum
 CVE-2007-3233 (The TEC-IT TBarCode OCX ActiveX control (TBarCode7.ocx) 7.0.2.3524 ...)
-	TODO: check
+	NOT-FOR-US: TEC-IT
 CVE-2007-3232 (The IBM TotalStorage DS400 with firmware 4.15 uses a blank password ...)
-	TODO: check
+	NOT-FOR-US: IBM
 CVE-2007-3231 (Buffer overflow in MeCab before 0.96 has unknown impact and attack ...)
 	- mecab <unfixed> (bug #429174)
 CVE-2007-3230 (PHP remote file inclusion vulnerability in phphtml.php in Idan Sofer ...)
-	TODO: check
+	NOT-FOR-US: PHP::HTML
 CVE-2007-3229 (index.php in Singapore Gallery allows remote attackers to obtain ...)
-	TODO: check
+	NOT-FOR-US: Singapore Gallery
 CVE-2007-3228 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Sitellite CMS
 CVE-2007-3227 (Cross-site scripting (XSS) vulnerability in the to_json function in ...)
 	- rails <unfixed> (bug #429177)
 CVE-2007-3226 (Cross-site scripting (XSS) vulnerability in dotProject before 2.1 RC2 ...)
-	TODO: check
+	NOT-FOR-US: dotProject
 CVE-2007-3225 (Unspecified vulnerability in Sun Java System Directory Server (slapd) ...)
-	TODO: check
+	NOT-FOR-US: Sun Java System Directory Server
 CVE-2007-3224 (Unspecified vulnerability in Sun ONE/Java System Directory Server ...)
-	TODO: check
+	NOT-FOR-US: Sun Java System Directory Server
 CVE-2007-3223 (Unspecified vulnerability in the NFS server in Sun Solaris 10 before ...)
-	TODO: check
+	NOT-FOR-US: Sun Solaris
 CVE-2007-3222 (PHP remote file inclusion vulnerability in modify.php in the XFsection ...)
-	TODO: check
+	NOT-FOR-US: XOOPS
 CVE-2007-3221 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: XOOPS
 CVE-2007-3220 (PHP remote file inclusion vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: XOOPS
 CVE-2007-3219 (Unspecified vulnerability in sources/action_public/xmlout.php in ...)
-	TODO: check
+	NOT-FOR-US: Invision Power Board (IPB)
 CVE-2007-3218 (Cross-site scripting (XSS) vulnerability in request.php in PHP Live! ...)
-	TODO: check
+	NOT-FOR-US: PHP Live!
 CVE-2007-3217 (Multiple PHP remote file inclusion vulnerabilities in Prototype of an ...)
-	TODO: check
+	NOT-FOR-US: Prototype of an PHP application
 CVE-2007-3216 (Multiple unspecified vulnerabilities in the server component of CA ...)
-	TODO: check
+	NOT-FOR-US: CA BrightStor products
 CVE-2007-3215 (PHPMailer 1.7, when configured to use sendmail, allows remote ...)
 	TODO: check
 CVE-2007-3214 (SQL injection vulnerability in style.php in e-Vision CMS 2.02 and ...)




More information about the Secure-testing-commits mailing list