[Secure-testing-commits] r7319 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Fri Nov 16 08:35:52 UTC 2007
Author: nion
Date: 2007-11-16 08:35:51 +0000 (Fri, 16 Nov 2007)
New Revision: 7319
Modified:
data/CVE/list
Log:
bumping to medium since this allows to corrupt databases by other people ini shared environments
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-11-16 04:30:16 UTC (rev 7318)
+++ data/CVE/list 2007-11-16 08:35:51 UTC (rev 7319)
@@ -25,7 +25,7 @@
CVE-2007-5977 (Cross-site scripting (XSS) vulnerability in db_create.php in ...)
- phpmyadmin <unfixed> (low; bug #451465)
CVE-2007-5976 (SQL injection vulnerability in db_create.php in phpMyAdmin before ...)
- - phpmyadmin <unfixed> (low; bug #451465)
+ - phpmyadmin <unfixed> (medium; bug #451465)
CVE-2007-5975 (SQL injection vulnerability in index.php in TBSource, as used in (1) ...)
NOT-FOR-US: TBSource
CVE-2007-5974 (SQL injection vulnerability in mailer.php in JPortal 2 allows remote ...)
More information about the Secure-testing-commits
mailing list