[Secure-testing-commits] r10811 - data/CVE

joeyh at alioth.debian.org joeyh at alioth.debian.org
Sat Dec 27 21:14:12 UTC 2008


Author: joeyh
Date: 2008-12-27 21:14:11 +0000 (Sat, 27 Dec 2008)
New Revision: 10811

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2008-12-27 12:44:04 UTC (rev 10810)
+++ data/CVE/list	2008-12-27 21:14:11 UTC (rev 10811)
@@ -242,6 +242,7 @@
 CVE-2008-5588 (SQL injection vulnerability in rankup.asp in Katy Whitton RankEm ...)
 	NOT-FOR-US: Katy Whitton RankEm
 CVE-2008-5587 (Directory traversal vulnerability in libraries/lib.inc.php in ...)
+	{DSA-1693-1}
 	- phppgadmin 4.2.1-1.1 (low; bug #508026)
 	NOTE: register_globals=on is required
 	NOTE: http://www.milw0rm.com/exploits/7363
@@ -16147,6 +16148,7 @@
 	{DSA-1284-1}
 	- qemu 0.9.0-2 (bug #424070)
 CVE-2007-5728 (Cross-site scripting (XSS) vulnerability in phpPgAdmin 3.5 to 4.1.1, ...)
+	{DSA-1693-1}
 	- phppgadmin 4.1.3-0.1 (bug #449103; low)
 CVE-2007-5727 (Incomplete blacklist vulnerability in the stripScripts function in ...)
 	NOT-FOR-US: OneOrZero Helpdesk
@@ -23854,6 +23856,7 @@
 CVE-2007-2866 (Multiple SQL injection vulnerabilities in ...)
 	NOT-FOR-US: PHPEcho CMS
 CVE-2007-2865 (Cross-site scripting (XSS) vulnerability in sqledit.php in phpPgAdmin ...)
+	{DSA-1693-1}
 	- phppgadmin 4.1.2-1 (low; bug #427151)
 	[sarge] - phppgadmin <not-affected> (Vulnerable code not present)
 	NOTE: http://phppgadmin.cvs.sourceforge.net/phppgadmin/webdb/classes/Misc.php?r1=1.156&r2=1.157&pathrev=MAIN
@@ -24174,6 +24177,7 @@
 	NOTE: This issue was created because of an upstream changelog entry, which however
 	NOTE: was meant for the XSS, which is the general issue.
 CVE-2007-2739 (Cross-site scripting (XSS) vulnerability in xajax before 0.2.5 allows ...)
+	{DSA-1692-1}
 	- php-xajax 0.2.5-1 (bug #426103; low)
 CVE-2007-2738 (SQL injection vulnerability in glossaire-p-f.php in the Glossaire 1.7 ...)
 	NOT-FOR-US: Glossaire for Xoops




More information about the Secure-testing-commits mailing list