[Secure-testing-commits] r10839 - data/CVE

sf at alioth.debian.org sf at alioth.debian.org
Sat Jan 3 11:55:20 UTC 2009 

Author: sf
Date: 2009-01-03 11:55:19 +0000 (Sat, 03 Jan 2009)
New Revision: 10839

Modified:
   data/CVE/list
Log:
more NFUs, textpattern already fixed

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-01-03 11:46:47 UTC (rev 10838)
+++ data/CVE/list	2009-01-03 11:55:19 UTC (rev 10839)
@@ -55,59 +55,59 @@
 CVE-2008-5780 (Forest Blog 1.3.2 stores sensitive information under the web root with ...)
 	NOT-FOR-US: Forest Blog
 CVE-2008-5779 (SQL injection vulnerability in lpro.php in Free Links Directory Script ...)
-	TODO: check
+	NOT-FOR-US: Free Links Directory Script
 CVE-2008-5778 (SQL injection vulnerability in report.php in Free Links Directory ...)
-	TODO: check
+	NOT-FOR-US: Free Links Directory Script
 CVE-2008-5777 (SQL injection vulnerability in index.php in CadeNix allows remote ...)
-	TODO: check
+	NOT-FOR-US: CadeNix
 CVE-2008-5776 (Multiple directory traversal vulnerabilities in Aperto Blog 0.1.1 ...)
-	TODO: check
+	NOT-FOR-US: Aperto Blog
 CVE-2008-5775 (SQL injection vulnerability in categories.php in Aperto Blog 0.1.1 ...)
-	TODO: check
+	NOT-FOR-US: Aperto Blog
 CVE-2008-5774 (Multiple SQL injection vulnerabilities in ASPSiteWare HomeBuilder 1.0 ...)
-	TODO: check
+	NOT-FOR-US: ASPSiteWare HomeBuilder
 CVE-2008-5773 (Nukedit 4.9.8 stores sensitive information under the web root with ...)
-	TODO: check
+	NOT-FOR-US: Nukedit
 CVE-2008-5772 (Multiple SQL injection vulnerabilities in ASPSiteWare RealtyListings ...)
-	TODO: check
+	NOT-FOR-US: ASPSiteWare RealtyListings
 CVE-2008-5771 (Directory traversal vulnerability in test.php in PHP Weather 2.2.2 ...)
-	TODO: check
+	NOT-FOR-US: PHP Weather
 CVE-2008-5770 (Cross-site scripting (XSS) vulnerability in config/make_config.php in ...)
-	TODO: check
+	NOT-FOR-US: PHP Weather
 CVE-2008-5769 (Multiple cross-site scripting (XSS) vulnerabilities in Kerio ...)
-	TODO: check
+	NOT-FOR-US: Kerio MailServer
 CVE-2008-5768 (SQL injection vulnerability in print.php in the AM Events (aka ...)
-	TODO: check
+	NOT-FOR-US: AM Events
 CVE-2008-5767 (SQL injection vulnerability in authors.asp in gNews Publisher allows ...)
-	TODO: check
+	NOT-FOR-US: gNews Publisher
 CVE-2008-5766 (SQL injection vulnerability in download.php in Farsi Script Faupload ...)
-	TODO: check
+	NOT-FOR-US: Farsi Script Faupload
 CVE-2008-5765 (WorkSimple 1.2.1 stores sensitive information under the web root with ...)
-	TODO: check
+	NOT-FOR-US: WorkSimple
 CVE-2008-5764 (PHP remote file inclusion vulnerability in calendar.php in WorkSimple ...)
-	TODO: check
+	NOT-FOR-US: WorkSimple
 CVE-2008-5763 (PHP remote file inclusion vulnerability in slogin_lib.inc.php in ...)
-	TODO: check
+	NOT-FOR-US: Simple Text-File Login Script (SiTeFiLo)
 CVE-2008-5762 (Simple Text-File Login Script (SiTeFiLo) 1.0.6 stores sensitive ...)
-	TODO: check
+	NOT-FOR-US: Simple Text-File Login Script (SiTeFiLo)
 CVE-2008-5761 (Multiple cross-site scripting (XSS) vulnerabilities in FlatnuX CMS ...)
-	TODO: check
+	NOT-FOR-US: FlatnuX CMS
 CVE-2008-5760 (Cross-site scripting (XSS) vulnerability in error413.php in Kerio ...)
-	TODO: check
+	NOT-FOR-US: Kerio MailServer
 CVE-2008-5759 (Cross-site scripting (XSS) vulnerability in FlatnuX CMS (aka ...)
-	TODO: check
+	NOT-FOR-US: FlatnuX CMS
 CVE-2008-5758 (Cross-site request forgery (CSRF) vulnerability in PHParanoid before ...)
-	TODO: check
+	NOT-FOR-US: PHParanoid
 CVE-2008-5757 (Cross-site scripting (XSS) vulnerability in textarea/index.php in ...)
-	TODO: check
+	- textpattern 4.0.6-1
 CVE-2008-5756 (Buffer overflow in BreakPoint Software Hex Workshop 5.1.4 allows ...)
-	TODO: check
+	NOT-FOR-US: BreakPoint Software Hex Workshop
 CVE-2008-5755 (Stack-based buffer overflow in IntelliTamper 2.07 and 2.08 allows ...)
-	TODO: check
+	NOT-FOR-US: IntelliTamper
 CVE-2008-5754 (Stack-based buffer overflow in BulletProof FTP Client allows ...)
-	TODO: check
+	NOT-FOR-US: BulletProof FTP Client
 CVE-2008-5753 (Stack-based buffer overflow in BulletProof FTP Client 2.63 allows ...)
-	TODO: check
+	NOT-FOR-US: BulletProof FTP Client
 CVE-2008-5752 (Directory traversal vulnerability in getConfig.php in the Page Flip ...)
 	TODO: check
 CVE-2008-5751 (SQL injection vulnerability in index.php in AlstraSoft Web Email ...)

More information about the Secure-testing-commits mailing list