[Secure-testing-commits] r10192 - data/CVE

Wed Oct 29 05:10:48 UTC 2008

Author: kees
Date: 2008-10-29 05:10:46 +0000 (Wed, 29 Oct 2008)
New Revision: 10192

Modified:
   data/CVE/list
Log:
NFUs: 25

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2008-10-28 21:14:11 UTC (rev 10191)
+++ data/CVE/list	2008-10-29 05:10:46 UTC (rev 10192)
@@ -5,57 +5,57 @@
 CVE-2008-4767 (Unrestricted file upload vulnerability in the DownloadsPlus module in ...)
 	TODO: check
 CVE-2008-4766 (SQL injection vulnerability in member.php in Oxygen Bulletin Board ...)
-	TODO: check
+	NOT-FOR-US: Oxygen Bulletin Board
 CVE-2008-4765 (SQL injection vulnerability in pollBooth.php in osCommerce Poll Booth ...)
-	TODO: check
+	NOT-FOR-US: osCommerce Poll Booth Add-On
 CVE-2008-4764 (Directory traversal vulnerability in the eXtplorer module ...)
-	TODO: check
+	NOT-FOR-US: eXtplorer module in Joomla!
 CVE-2008-4763 (Multiple cross-site scripting (XSS) vulnerabilities in sample.php in ...)
-	TODO: check
+	NOT-FOR-US: WiKID wClient-PHP
 CVE-2008-4762 (Stack-based buffer overflow in freeSSHd 1.2.1 allows remote ...)
-	TODO: check
+	NOT-FOR-US: freeSSHd
 CVE-2008-4761 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Kayako eSupport
 CVE-2008-4760 (SQL injection vulnerability in lecture.php in Graphiks MyForum 1.3, ...)
-	TODO: check
+	NOT-FOR-US: Graphiks MyForum
 CVE-2008-4759 (Directory traversal vulnerability in download.php in BuzzyWall 1.3.1 ...)
-	TODO: check
+	NOT-FOR-US: BuzzyWall
 CVE-2008-4758 (Directory traversal vulnerability in download_file.php in PHP-Daily ...)
-	TODO: check
+	NOT-FOR-US: PHPdaily
 CVE-2008-4757 (Multiple SQL injection vulnerabilities in PHP-Daily allow remote ...)
-	TODO: check
+	NOT-FOR-US: PHPdaily
 CVE-2008-4756 (Cross-site scripting (XSS) vulnerability in add_prest_date.php in ...)
-	TODO: check
+	NOT-FOR-US: PHPdaily
 CVE-2008-4755 (SQL injection vulnerability in gotourl.php in PozScripts Classified ...)
-	TODO: check
+	NOT-FOR-US: PozScripts Classified Auctions Script
 CVE-2008-4754 (SQL injection vulnerability in forum.php in Scripts for Sites (SFS) Ez ...)
-	TODO: check
+	NOT-FOR-US: Scripts for Sites Ez Forum
 CVE-2008-4753 (SQL injection vulnerability in EditUrl.php in AJ Square RSS Reader ...)
-	TODO: check
+	NOT-FOR-US: AJ Square RSS Reader
 CVE-2008-4752 (TlNews 2.2 allows remote attackers to bypass authentication and gain ...)
-	TODO: check
+	NOT-FOR-US: TlNews
 CVE-2008-4751 (Cross-site scripting (XSS) vulnerability in index.php in iPei ...)
-	TODO: check
+	NOT-FOR-US: iPei Guestbook
 CVE-2008-4750 (Stack-based buffer overflow in the VImpX.VImpAX ActiveX control ...)
-	TODO: check
+	NOT-FOR-US: ActiveX
 CVE-2008-4749 (Multiple insecure method vulnerabilities in the VImpX.VImpAX ActiveX ...)
-	TODO: check
+	NOT-FOR-US: ActiveX
 CVE-2008-4747 (Unspecified vulnerability in the search feature in Sun Java System ...)
 	TODO: check
 CVE-2008-4746 (Multiple SQL injection vulnerabilities in Uniwin eCart Professional ...)
-	TODO: check
+	NOT-FOR-US: Uniwin eCart Professional
 CVE-2008-4745 (Cross-site scripting (XSS) vulnerability in emailFriend.asp in Uniwin ...)
-	TODO: check
+	NOT-FOR-US: Uniwin eCart Professional
 CVE-2008-4744 (SQL injection vulnerability in product_detail.php in DXShopCart 4.30mc ...)
-	TODO: check
+	NOT-FOR-US: DXShopCart
 CVE-2008-4743 (SQL injection vulnerability in index.php in QuidaScript FAQ Management ...)
-	TODO: check
+	NOT-FOR-US: QuidaScript FAQ Management Script
 CVE-2008-4742 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: TimeTrex
 CVE-2008-4741 (Directory traversal vulnerability in index.php in FAR-PHP 1.00, when ...)
-	TODO: check
+	NOT-FOR-US: FAR-PHP
 CVE-2008-4740 (Directory traversal vulnerability in templater.php in the ZZ_Templater ...)
-	TODO: check
+	NOT-FOR-US: ZZ_Templater module in TinyCMS
 CVE-2006-7234 (Untrusted search path vulnerability in Lynx before 2.8.6rel.4 allows ...)
 	TODO: check
 CVE-2008-4748 (Format string vulnerability in the URI handler in KVirc 3.4.0, when ...)


