[Secure-testing-commits] r8670 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Fri May 2 11:04:55 UTC 2008
Author: white
Date: 2008-05-02 11:04:54 +0000 (Fri, 02 May 2008)
New Revision: 8670
Modified:
data/CVE/list
Log:
More NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-05-02 10:58:12 UTC (rev 8669)
+++ data/CVE/list 2008-05-02 11:04:54 UTC (rev 8670)
@@ -27,44 +27,44 @@
CVE-2008-2027 (Open redirect vulnerability in WebID/IISWebAgentIF.dll in RSA ...)
NOT-FOR-US: RSA Authentication Agent
CVE-2008-2026 (Cross-site scripting (XSS) vulnerability in WebID/IISWebAgentIF.dll in ...)
- TODO: check
+ NOT-FOR-US: RSA Authentication Agent
CVE-2008-2025
RESERVED
CVE-2008-2024 (Cross-site scripting (XSS) vulnerability in index.php in miniBB 2.2, ...)
NOT-FOR-US: miniBB
CVE-2008-2023 (Multiple SQL injection vulnerabilities in PD9 Software MegaBBS 2.2 ...)
- TODO: check
+ NOT-FOR-US: MegaBBS
CVE-2008-2022 (Mulatiple cross-site scripting (XSS) vulnerabilities in PD9 Software ...)
- TODO: check
+ NOT-FOR-US: MegaBBS
CVE-2008-2021 (Heap-based buffer overflow in Lhaplus before 1.57 allows remote ...)
- TODO: check
+ NOT-FOR-US: Lhaplus
CVE-2008-2020 (The CAPTCHA implementation as used in (1) Francisco Burzi PHP-Nuke 7.0 ...)
- TODO: check
+ NOT-FOR-US: PHP-Nuke
CVE-2008-2019 (Simple Machines Forum (SMF), probably 1.1.4, relies on "randomly ...)
- TODO: check
+ NOT-FOR-US: Simple Machines Forum
CVE-2008-2018 (The AssignUser function in template.class.php in PHPizabi 0.848b C1 ...)
- TODO: check
+ NOT-FOR-US: PHPizabi
CVE-2008-2017 (Directory traversal vulnerability in Chilek Content Management System ...)
- TODO: check
+ NOT-FOR-US: Chilek Content Management System
CVE-2008-2016 (PHP remote file inclusion vulnerability in Chilek Content Management ...)
- TODO: check
+ NOT-FOR-US: Chilek Content Management System
CVE-2008-2015 (Multiple absolute path traversal vulnerabilities in certain ActiveX ...)
TODO: check
CVE-2008-2014 (Mozilla Firefox 3.0 beta 5 allows remote attackers to cause a denial ...)
- iceweasel <unfixed> (unimportant)
NOTE: Browser crashes / hangs not treated as security issues
CVE-2008-2013 (SQL injection vulnerability in index.php in the pnFlashGames 1.5 ...)
- TODO: check
+ NOT-FOR-US: pnFlashGames
CVE-2008-2012 (SQL injection vulnerability in index.php in the PostSchedule 1.0 ...)
- TODO: check
+ NOT-FOR-US: PostSchedule
CVE-2008-2011 (Cross-site scripting (XSS) vulnerability in the National Rail ...)
- TODO: check
+ NOT-FOR-US: National Rail Enquiries Live Departure Boards gadget
CVE-2008-2010 (Unspecified vulnerability in Apple QuickTime Player on Windows XP SP2 ...)
- TODO: check
+ NOT-FOR-US: Windows
CVE-2008-2009
RESERVED
CVE-2008-2008 (Buffer overflow in the Display Names message feature in Cerulean ...)
- TODO: check
+ NOT-FOR-US: Cerulean Studios Trillian Basic
CVE-2008-2007
RESERVED
CVE-2008-2006
More information about the Secure-testing-commits
mailing list