[Secure-testing-commits] r12037 - data/CVE

Wed Jun 3 17:32:41 UTC 2009

Author: derevko-guest
Date: 2009-06-03 17:32:41 +0000 (Wed, 03 Jun 2009)
New Revision: 12037

Modified:
   data/CVE/list
Log:
minor wordpress issue

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2009-06-03 16:57:14 UTC (rev 12036)
+++ data/CVE/list	2009-06-03 17:32:41 UTC (rev 12037)
@@ -1099,7 +1099,8 @@
 CVE-2009-1450 (PHP remote file inclusion vulnerability in format.php in SMA-DB 0.3.12 ...)
 	NOT-FOR-US: SMA-DB 
 CVE-2008-6767 (wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote ...)
-	TODO: wordpress
+	- wordpress <unfixed> (low; bug #531736)
+	NOTE: low impact, probably no-dsa
 CVE-2008-6766 (cart_save.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote ...)
 	NOT-FOR-US: ViArt Shop (aka Shopping Cart)
 CVE-2008-6765 (ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to access ...)
@@ -1109,7 +1110,8 @@
 CVE-2008-6763 (login2.php in Silentum LoginSys 1.0.0 allows remote attackers to ...)
 	NOT-FOR-US: Silentum LoginSys
 CVE-2008-6762 (Open redirect vulnerability in wp-admin/upgrade.php in WordPress, ...)
-	TODO: wordpress
+	- wordpress <unfixed> (low; bug #531736)
+	NOTE: low impact, probably no-dsa
 CVE-2008-6761 (Static code injection vulnerability in admin/install.php in ...)
 	NOT-FOR-US: Flexcustomer
 CVE-2008-6760 (ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to obtain ...)


