[Secure-testing-commits] r10831 - data/CVE
joeyh at alioth.debian.org
joeyh at alioth.debian.org
Wed Dec 31 21:14:12 UTC 2008
Author: joeyh
Date: 2008-12-31 21:14:10 +0000 (Wed, 31 Dec 2008)
New Revision: 10831
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-12-31 13:43:44 UTC (rev 10830)
+++ data/CVE/list 2008-12-31 21:14:10 UTC (rev 10831)
@@ -1,3 +1,129 @@
+CVE-2008-5807 (Multiple cross-site scripting (XSS) vulnerabilities in TestLink before ...)
+ TODO: check
+CVE-2008-5806 (SQL injection vulnerability in login.php in DeltaScripts PHP ...)
+ TODO: check
+CVE-2008-5805 (SQL injection vulnerability in detail.php in DeltaScripts PHP ...)
+ TODO: check
+CVE-2008-5804 (SQL injection vulnerability in admin/admin_catalog.php in e-topbiz ...)
+ TODO: check
+CVE-2008-5803 (SQL injection vulnerability in admin/login.php in E-topbiz Online ...)
+ TODO: check
+CVE-2008-5802 (SQL injection vulnerability in index.php in E-topbiz Online Store 1.0 ...)
+ TODO: check
+CVE-2008-5801 (Unspecified vulnerability in the Dictionary (rtgdictionary) extension ...)
+ TODO: check
+CVE-2008-5800 (SQL injection vulnerability in the Wir ber uns [sic] (fsmi_people) ...)
+ TODO: check
+CVE-2008-5799 (Cross-site scripting (XSS) vulnerability in the Wir ber uns [sic] ...)
+ TODO: check
+CVE-2008-5798 (SQL injection vulnerability in the CMS Poll system (cms_poll) ...)
+ TODO: check
+CVE-2008-5797 (SQL injection vulnerability in the advCalendar extension 0.3.1 and ...)
+ TODO: check
+CVE-2008-5796 (SQL injection vulnerability in the eluna Page Comments ...)
+ TODO: check
+CVE-2008-5795 (Cross-site scripting (XSS) vulnerability in the eluna Page Comments ...)
+ TODO: check
+CVE-2008-5794 (Directory traversal vulnerability in system/admin/images.php in ...)
+ TODO: check
+CVE-2008-5793 (Multiple PHP remote file inclusion vulnerabilities in the Clickheat - ...)
+ TODO: check
+CVE-2008-5792 (PHP remote file inclusion vulnerability in show_joined.php in ...)
+ TODO: check
+CVE-2008-5791 (Multiple unspecified vulnerabilities in PrestaShop e-Commerce Solution ...)
+ TODO: check
+CVE-2008-5790 (Multiple PHP remote file inclusion vulnerabilities in the ...)
+ TODO: check
+CVE-2008-5789 (Multiple PHP remote file inclusion vulnerabilities in the Recly ...)
+ TODO: check
+CVE-2008-5788 (SQL injection vulnerability in index.php in Domain Seller Pro 1.5 ...)
+ TODO: check
+CVE-2008-5787 (Directory traversal vulnerability in mod.php in Arab Portal 2.1 on ...)
+ TODO: check
+CVE-2008-5786 (Cross-site scripting (XSS) vulnerability in the Silva Find extension ...)
+ TODO: check
+CVE-2008-5785 (SQL injection vulnerability in V3 Chat - Profiles/Dating Script 3.0.2 ...)
+ TODO: check
+CVE-2008-5784 (V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to ...)
+ TODO: check
+CVE-2008-5783 (admin/index.php in V3 Chat Live Support 3.0.4 allows remote attackers ...)
+ TODO: check
+CVE-2008-5782 (SQL injection vulnerability in bannerclick.php in ZeeMatri 3.0 allows ...)
+ TODO: check
+CVE-2008-5781 (SQL injection vulnerability in right.php in Cant Find A Gaming CMS ...)
+ TODO: check
+CVE-2008-5780 (Forest Blog 1.3.2 stores sensitive information under the web root with ...)
+ TODO: check
+CVE-2008-5779 (SQL injection vulnerability in lpro.php in Free Links Directory Script ...)
+ TODO: check
+CVE-2008-5778 (SQL injection vulnerability in report.php in Free Links Directory ...)
+ TODO: check
+CVE-2008-5777 (SQL injection vulnerability in index.php in CadeNix allows remote ...)
+ TODO: check
+CVE-2008-5776 (Multiple directory traversal vulnerabilities in Aperto Blog 0.1.1 ...)
+ TODO: check
+CVE-2008-5775 (SQL injection vulnerability in categories.php in Aperto Blog 0.1.1 ...)
+ TODO: check
+CVE-2008-5774 (Multiple SQL injection vulnerabilities in ASPSiteWare HomeBuilder 1.0 ...)
+ TODO: check
+CVE-2008-5773 (Nukedit 4.9.8 stores sensitive information under the web root with ...)
+ TODO: check
+CVE-2008-5772 (Multiple SQL injection vulnerabilities in ASPSiteWare RealtyListings ...)
+ TODO: check
+CVE-2008-5771 (Directory traversal vulnerability in test.php in PHP Weather 2.2.2 ...)
+ TODO: check
+CVE-2008-5770 (Cross-site scripting (XSS) vulnerability in config/make_config.php in ...)
+ TODO: check
+CVE-2008-5769 (Multiple cross-site scripting (XSS) vulnerabilities in Kerio ...)
+ TODO: check
+CVE-2008-5768 (SQL injection vulnerability in print.php in the AM Events (aka ...)
+ TODO: check
+CVE-2008-5767 (SQL injection vulnerability in authors.asp in gNews Publisher allows ...)
+ TODO: check
+CVE-2008-5766 (SQL injection vulnerability in download.php in Farsi Script Faupload ...)
+ TODO: check
+CVE-2008-5765 (WorkSimple 1.2.1 stores sensitive information under the web root with ...)
+ TODO: check
+CVE-2008-5764 (PHP remote file inclusion vulnerability in calendar.php in WorkSimple ...)
+ TODO: check
+CVE-2008-5763 (PHP remote file inclusion vulnerability in slogin_lib.inc.php in ...)
+ TODO: check
+CVE-2008-5762 (Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive ...)
+ TODO: check
+CVE-2008-5761 (Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS ...)
+ TODO: check
+CVE-2008-5760 (Cross-site scripting (XSS) vulnerability in error413.php in Kerio ...)
+ TODO: check
+CVE-2008-5759 (Cross-site scripting (XSS) vulnerability in FlatnuX CMS (aka ...)
+ TODO: check
+CVE-2008-5758 (Cross-site request forgery (CSRF) vulnerability in PHParanoid before ...)
+ TODO: check
+CVE-2008-5757 (Cross-site scripting (XSS) vulnerability in textarea/index.php in ...)
+ TODO: check
+CVE-2008-5756 (Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 allows ...)
+ TODO: check
+CVE-2008-5755 (Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows ...)
+ TODO: check
+CVE-2008-5754 (Stack-based buffer overflow in BulletProof FTP Client allows ...)
+ TODO: check
+CVE-2008-5753 (Stack-based buffer overflow in BulletProof FTP Client 2.63 allows ...)
+ TODO: check
+CVE-2008-5752 (Directory traversal vulnerability in getConfig.php in the Page Flip ...)
+ TODO: check
+CVE-2008-5751 (SQL injection vulnerability in index.php in AlstraSoft Web Email ...)
+ TODO: check
+CVE-2008-5750 (Argument injection vulnerability in Microsoft Internet Explorer 8 beta ...)
+ TODO: check
+CVE-2008-5749 (** DISPUTED ** ...)
+ TODO: check
+CVE-2008-5748 (Directory traversal vulnerability in plugins/spaw2/dialogs/dialog.php ...)
+ TODO: check
+CVE-2008-5747 (F-Prot 4.6.8 for GNU/Linux allows remote attackers to bypass ...)
+ TODO: check
+CVE-2008-5746 (Sun SNMP Management Agent (SUNWmasf) 1.4u2 through 1.5.4 allows local ...)
+ TODO: check
+CVE-2008-5745 (Integer overflow in Microsoft Windows Media Player 9, 10, and 11 ...)
+ TODO: check
CVE-2009-XXXX [buffer overflow in libaudiofile]
- audiofile <unfixed> (medium; bug #510205)
TODO: request CVE id
@@ -2824,8 +2950,7 @@
NOT-FOR-US: Sun Java System Web Proxy Server
CVE-2008-4540 (Windows Mobile 6 on the HTC Hermes device makes WLAN passwords ...)
NOT-FOR-US: Windows Mobile
-CVE-2008-4539 [qemu heap overflow in Cirrus emulation]
- RESERVED
+CVE-2008-4539 (Heap-based buffer overflow in the Cirrus VGA implementation in (1) KVM ...)
- qemu 0.9.1+svn20081101-1
CVE-2008-4538
RESERVED
@@ -3463,7 +3588,7 @@
CVE-2008-4271
RESERVED
CVE-2008-4270
- RESERVED
+ REJECTED
CVE-2008-4269 (The search-ms protocol handler in Windows Explorer in Microsoft ...)
NOT-FOR-US: Microsoft Windows Explorer
CVE-2008-4268 (The Windows Search component in Microsoft Windows Vista Gold and SP1 ...)
More information about the Secure-testing-commits
mailing list