[Secure-testing-commits] r11744 - data/CVE
Joey Hess
joeyh at alioth.debian.org
Wed Apr 29 21:14:16 UTC 2009
Author: joeyh
Date: 2009-04-29 21:14:15 +0000 (Wed, 29 Apr 2009)
New Revision: 11744
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2009-04-29 18:38:27 UTC (rev 11743)
+++ data/CVE/list 2009-04-29 21:14:15 UTC (rev 11744)
@@ -1,3 +1,81 @@
+CVE-2009-1477
+ RESERVED
+CVE-2009-1476
+ RESERVED
+CVE-2009-1475
+ RESERVED
+CVE-2009-1474
+ RESERVED
+CVE-2009-1473
+ RESERVED
+CVE-2009-1472
+ RESERVED
+CVE-2009-1471
+ RESERVED
+CVE-2009-1470
+ RESERVED
+CVE-2009-1469
+ RESERVED
+CVE-2009-1468
+ RESERVED
+CVE-2009-1467
+ RESERVED
+CVE-2009-1466
+ RESERVED
+CVE-2009-1465
+ RESERVED
+CVE-2009-1464
+ RESERVED
+CVE-2009-1463 (Static code injection vulnerability in razorCMS before 0.4 allows ...)
+ TODO: check
+CVE-2009-1462 (The Security Manager in razorCMS before 0.4 does not verify the ...)
+ TODO: check
+CVE-2009-1461 (Cross-site scripting (XSS) vulnerability in the Create New Page form ...)
+ TODO: check
+CVE-2009-1460 (razorCMS before 0.4 uses weak permissions for (1) ...)
+ TODO: check
+CVE-2009-1459 (Cross-site request forgery (CSRF) vulnerability in razorCMS before 0.4 ...)
+ TODO: check
+CVE-2009-1458 (Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php ...)
+ TODO: check
+CVE-2009-1457 (Cross-site scripting (XSS) vulnerability in player.php in Nuke ...)
+ TODO: check
+CVE-2009-1456 (Directory traversal vulnerability in admin.php in Malleo 1.2.3 allows ...)
+ TODO: check
+CVE-2009-1455 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
+ TODO: check
+CVE-2009-1454 (Cross-site scripting (XSS) vulnerability in tasks.php in WebCollab ...)
+ TODO: check
+CVE-2009-1453 (SQL injection vulnerability in class.eport.php in Tiny Blogr 1.0.0 ...)
+ TODO: check
+CVE-2009-1452 (Multiple PHP remote file inclusion vulnerabilities in theme/format.php ...)
+ TODO: check
+CVE-2009-1451 (Cross-site scripting (XSS) vulnerability in startpage.php in SMA-DB ...)
+ TODO: check
+CVE-2009-1450 (PHP remote file inclusion vulnerability in format.php in SMA-DB 0.3.12 ...)
+ TODO: check
+CVE-2008-6767 (wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote ...)
+ TODO: check
+CVE-2008-6766 (cart_save.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote ...)
+ TODO: check
+CVE-2008-6765 (ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to access ...)
+ TODO: check
+CVE-2008-6764 (Cross-site scripting (XSS) vulnerability in login.php in Silentum ...)
+ TODO: check
+CVE-2008-6763 (login2.php in Silentum LoginSys 1.0.0 allows remote attackers to ...)
+ TODO: check
+CVE-2008-6762 (Open redirect vulnerability in wp-admin/upgrade.php in WordPress, ...)
+ TODO: check
+CVE-2008-6761 (Static code injection vulnerability in admin/install.php in ...)
+ TODO: check
+CVE-2008-6760 (ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to obtain ...)
+ TODO: check
+CVE-2008-6759 (ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to obtain ...)
+ TODO: check
+CVE-2008-6758 (Cross-site request forgery (CSRF) vulnerability in cart_save.php in ...)
+ TODO: check
+CVE-2008-6757 (Cross-site scripting (XSS) vulnerability in manuals_search.php in ...)
+ TODO: check
CVE-2009-1449 (Stack-based buffer overflow in PortableApps CoolPlayer Portable (aka ...)
NOT-FOR-US: CoolPlayer
CVE-2009-1448 (Cross-site scripting (XSS) vulnerability in apricot.php in LovPop.net ...)
@@ -13655,8 +13733,8 @@
RESERVED
CVE-2008-2439 (Directory traversal vulnerability in the UpdateAgent function in ...)
NOT-FOR-US: Trend Micro OfficeScan
-CVE-2008-2438
- RESERVED
+CVE-2008-2438 (Unspecified vulnerability in HP OpenView Network Node Manager (OV NNM) ...)
+ TODO: check
CVE-2008-2437 (Stack-based buffer overflow in cgiRecvFile.exe in Trend Micro ...)
NOT-FOR-US: Trend Micro OfficeScan
CVE-2008-2436 (Multiple heap-based buffer overflows in the IppCreateServerRef ...)
More information about the Secure-testing-commits
mailing list