[Secure-testing-commits] r13635 - data/CVE

Steffen Joeris white at alioth.debian.org
Wed Dec 23 18:18:43 UTC 2009 

Author: white
Date: 2009-12-23 18:18:42 +0000 (Wed, 23 Dec 2009)
New Revision: 13635

Modified:
   data/CVE/list
Log:
typo3 extension NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-12-23 15:44:54 UTC (rev 13634)
+++ data/CVE/list	2009-12-23 18:18:42 UTC (rev 13635)
@@ -127,27 +127,27 @@
 CVE-2009-4347 (Cross-site scripting (XSS) vulnerability in daloradius-users/login.php ...)
 	NOT-FOR-US: daloRADIUS
 CVE-2009-4346 (Cross-site scripting (XSS) vulnerability in the Frontend news ...)
-	TODO: check
+	NOT-FOR-US: fe_rtenews typo3 extension
 CVE-2009-4345 (Cross-site scripting (XSS) vulnerability in the vShoutbox (vshoutbox) ...)
-	TODO: check
+	NOT-FOR-US: vShoutbox typo3 extension
 CVE-2009-4344 (Cross-site scripting (XSS) vulnerability in the ZID Linkliste ...)
-	TODO: check
+	NOT-FOR-US: zid_linklist typo3 extension
 CVE-2009-4343 (Cross-site scripting (XSS) vulnerability in the Training Company ...)
-	TODO: check
+	NOT-FOR-US: trainincdb typo3 extension
 CVE-2009-4342 (SQL injection vulnerability in the Job Exchange (jobexchange) ...)
-	TODO: check
+	NOT-FOR-US: jobexchange typo3 extension
 CVE-2009-4341 (SQL injection vulnerability in the No indexed Search ...)
-	TODO: check
+	NOT-FOR-US: no_indexed_search typo3 extension
 CVE-2009-4340 (Cross-site scripting (XSS) vulnerability in the No indexed Search ...)
-	TODO: check
+	NOT-FOR-US: no_indexed_search typo3 extension
 CVE-2009-4339 (SQL injection vulnerability in the Subscription (mf_subscription) ...)
-	TODO: check
+	NOT-FOR-US: mf_subscription typo3 extension
 CVE-2009-4338 (SQL injection vulnerability in the Flash SlideShow (slideshow) ...)
-	TODO: check
+	NOT-FOR-US: slideshow typo3 extension
 CVE-2009-4337 (SQL injection vulnerability in the Diocese of Portsmouth Calendar ...)
-	TODO: check
+	NOT-FOR-US: pd_calendar typo3 extension
 CVE-2009-4336 (Cross-site scripting (XSS) vulnerability in the Diocese of Portsmouth ...)
-	TODO: check
+	NOT-FOR-US: pd_calendar typo3 extension
 CVE-2009-4335 (Multiple unspecified vulnerabilities in bundled stored procedures in ...)
 	NOT-FOR-US: IBM DB2
 CVE-2009-4334 (The Self Tuning Memory Manager (STMM) component in IBM DB2 9.1 before ...)

More information about the Secure-testing-commits mailing list