[Secure-testing-commits] r9840 - data/CVE
white at alioth.debian.org
white at alioth.debian.org
Wed Sep 17 12:23:54 UTC 2008
Author: white
Date: 2008-09-17 12:23:53 +0000 (Wed, 17 Sep 2008)
New Revision: 9840
Modified:
data/CVE/list
Log:
Report new issue to BTS; sql-ledger affected by two issues according to maintainer
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2008-09-17 11:42:47 UTC (rev 9839)
+++ data/CVE/list 2008-09-17 12:23:53 UTC (rev 9840)
@@ -61,11 +61,11 @@
CVE-2008-4080 (SQL injection vulnerability in Stash 1.0.3, when magic_quotes_gpc is ...)
NOT-FOR-US: Stash
CVE-2008-4079 (Cross-site scripting (XSS) vulnerability in Movable Type (MT) 4.x ...)
- TODO: check
+ - movabletype-opensource <unfixed> (low; bug #499252)
CVE-2008-4078 (SQL injection vulnerability in the AR/AP transaction report in (1) ...)
- TODO: check
+ - sql-ledger <unfixed>
CVE-2008-4077 (The CGI scripts in (1) LedgerSMB (LSMB) before 1.2.15 and (2) ...)
- TODO: check
+ - sql-ledger <unfixed>
CVE-2008-4076 (Cross-site scripting (XSS) vulnerability in (1) Tor World Tor Board ...)
NOT-FOR-US: Tor World Software
CVE-2008-4075 (Directory traversal vulnerability in index.php in D-iscussion Board ...)
More information about the Secure-testing-commits
mailing list