[Secure-testing-commits] r8342 - in data: . CVE
thijs at alioth.debian.org
thijs at alioth.debian.org
Sun Mar 16 11:34:09 UTC 2008
Author: thijs
Date: 2008-03-16 11:34:08 +0000 (Sun, 16 Mar 2008)
New Revision: 8342
Modified:
data/CVE/list
data/embedded-code-copies
Log:
gallery2/moodle embed smarty
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-03-16 11:21:57 UTC (rev 8341)
+++ data/CVE/list 2008-03-16 11:34:08 UTC (rev 8342)
@@ -506,7 +506,8 @@
- phpqladmin <removed>
CVE-2008-1066 (The modifier.regex_replace.php plugin in Smarty before 2.6.19, as used ...)
- smarty 2.6.18-1.1 (low; bug #469492)
- TODO: Check moodle
+ - moodle <unfixed> (low; bug #471158)
+ - gallery2 <unfixed> (low; bug #471160)
CVE-2008-1065 (Multiple SQL injection vulnerabilities in index.php in the ...)
NOT-FOR-US: xmmemberstats module for XOOPS
CVE-2008-1064 (Cross-site scripting (XSS) vulnerability in images.php in the Red ...)
Modified: data/embedded-code-copies
===================================================================
--- data/embedded-code-copies 2008-03-16 11:21:57 UTC (rev 8341)
+++ data/embedded-code-copies 2008-03-16 11:34:08 UTC (rev 8342)
@@ -282,7 +282,8 @@
- moodle <unfixed> (embed)
smarty:
- - moodle <unfixed> (embed)
+ - moodle <unfixed> (embed; bug #471158)
+ - gallery2 <unfixed> (embed; bug #471160)
TinyMCE
- wordpress <unfixed> (embed)
More information about the Secure-testing-commits
mailing list