[Secure-testing-commits] r7153 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Wed Oct 31 06:48:21 UTC 2007


Author: white
Date: 2007-10-31 06:48:21 +0000 (Wed, 31 Oct 2007)
New Revision: 7153

Modified:
   data/CVE/list
Log:
Two more sitebar issues, informed maintainer

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-31 06:30:36 UTC (rev 7152)
+++ data/CVE/list	2007-10-31 06:48:21 UTC (rev 7153)
@@ -21,13 +21,13 @@
 CVE-2007-5696 (PHP remote file inclusion vulnerability in includes.php in phpBasic ...)
 	NOT-FOR-US: phpBasic
 CVE-2007-5695 (command.php in SiteBar 3.3.8 allows remote attackers to redirect users ...)
-	TODO: check
+	- sitebar <unfixed> (low; bug #448690)
 CVE-2007-5694 (Absolute path traversal vulnerability in the translation module ...)
 	- sitebar <unfixed> (low; bug #447135)
 CVE-2007-5693 (Eval injection vulnerability in the translation module ...)
 	- sitebar <unfixed> (low; bug #447135)
 CVE-2007-5692 (Multiple cross-site scripting (XSS) vulnerabilities in SiteBar 3.3.8 ...)
-	TODO: check
+	- sitebar <unfixed> (low; bug #448689)
 CVE-2007-5691 (ParseFTPList.cpp in Mozilla Firefox 2.0.0.7 allows remote FTP servers ...)
 	TODO: check
 CVE-2007-5690 (Buffer overflow in sethdlc.c in the Asterisk Zaptel 1.4.5.1 might ...)




More information about the Secure-testing-commits mailing list