[Secure-testing-commits] r8041 - data/CVE
nion at alioth.debian.org
nion at alioth.debian.org
Sun Jan 27 15:34:19 UTC 2008
Author: nion
Date: 2008-01-27 15:34:19 +0000 (Sun, 27 Jan 2008)
New Revision: 8041
Modified:
data/CVE/list
Log:
new issue: CVE-2007-6672, jetty5 also affected
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-01-27 14:28:12 UTC (rev 8040)
+++ data/CVE/list 2008-01-27 15:34:19 UTC (rev 8041)
@@ -750,8 +750,7 @@
CVE-2007-6673 (Cross-site scripting (XSS) vulnerability in Makale Scripti allows ...)
NOT-FOR-US: Makale Scripti
CVE-2007-6672 (Mortbay Jetty 6.1.5 and 6.1.6 allows remote attackers to bypass ...)
- TODO: check
- NOTE: poked upstream if this does affect jetty 5 as well
+ - jetty5 <unfixed> (medium; bug #462793)
CVE-2007-6671 (SQL injection vulnerability in login_form.asp in Instant Softwares ...)
NOT-FOR-US: Instant Softwares Dating Site
CVE-2007-6670 (SQL injection vulnerability in search.php in PHCDownload 1.1.0 allows ...)
More information about the Secure-testing-commits
mailing list