[Secure-testing-commits] r8690 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Sun May 4 05:39:57 UTC 2008
Author: white
Date: 2008-05-04 05:39:56 +0000 (Sun, 04 May 2008)
New Revision: 8690
Modified:
data/CVE/list
Log:
Some more NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-05-04 05:34:43 UTC (rev 8689)
+++ data/CVE/list 2008-05-04 05:39:56 UTC (rev 8690)
@@ -250,13 +250,13 @@
CVE-2008-1919 (SQL injection vulnerability in listtest.php in YourFreeWorld Apartment ...)
NOT-FOR-US: YourFreeWorld Apartment Search Script
CVE-2008-1918 (SQL injection vulnerability in submit.php in PHP-Fusion 6.01.14 and ...)
- TODO: check
+ NOT-FOR-US: PHP-Fusion
CVE-2008-1917 (Multiple cross-site scripting (XSS) vulnerabilities in AMFPHP 1.2 ...)
- TODO: check
+ NOT-FOR-US: AMFPHP
CVE-2008-1916 (Multiple cross-site scripting (XSS) vulnerabilities in the Ubercart ...)
- TODO: check
+ NOT-FOR-US: Ubercart (drupal module)
CVE-2008-1915 (SQL injection vulnerability in view.asp in DevWorx BlogWorx 1.0 allows ...)
- TODO: check
+ NOT-FOR-US: BlogWorx
CVE-2008-1930 (The cookie authentication method in WordPress 2.5 relies on a hash of ...)
- wordpress 2.5.1-1 (medium; bug #477910)
NOTE: only exploitable in blogs that allow user registering
More information about the Secure-testing-commits
mailing list