[Secure-testing-commits] r11288 - data/CVE

white at alioth.debian.org white at alioth.debian.org
Sun Mar 1 06:33:19 UTC 2009 

Author: white
Date: 2009-03-01 06:33:18 +0000 (Sun, 01 Mar 2009)
New Revision: 11288

Modified:
   data/CVE/list
Log:
Some NFUs

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-03-01 04:43:10 UTC (rev 11287)
+++ data/CVE/list	2009-03-01 06:33:18 UTC (rev 11288)
@@ -6,37 +6,37 @@
 	- optipng 0.6.2.1-1 (low)
 	NOTE: http://secunia.com/advisories/34035/
 CVE-2009-0741 (SQL injection vulnerability in Login.asp in Craft Silicon Banking at Home ...)
-	TODO: check
+	NOT-FOR-US: Craft Silicon Banking at Home
 CVE-2009-0740 (SQL injection vulnerability in login.php in BlueBird Prelease allows ...)
-	TODO: check
+	NOT-FOR-US: BlueBird Prelease
 CVE-2009-0739 (SQL injection vulnerability in login.php in MyNews 0.10 allows remote ...)
-	TODO: check
+	NOT-FOR-US: MyNews
 CVE-2009-0738 (SQL injection vulnerability in login.php in Auth Php 1.0 allows remote ...)
 	TODO: check
 CVE-2009-0737 (Multiple cross-site scripting (XSS) vulnerabilities in the web-based ...)
 	TODO: check
 CVE-2009-0736 (Cross-site scripting (XSS) vulnerability in Pebble before 2.3.2 allows ...)
-	TODO: check
+	NOT-FOR-US: Pebble
 CVE-2009-0735 (Directory traversal vulnerability in lib/classes/message_class.php in ...)
-	TODO: check
+	NOT-FOR-US: Papoo CMS
 CVE-2009-0734 (Heap-based buffer overflow in MultimediaPlayer.exe 6.86.240.7 in Nokia ...)
-	TODO: check
+	NOT-FOR-US: MultimediaPlayer.exe
 CVE-2009-0733
 	RESERVED
 CVE-2009-0732 (Downloadcenter 2.1 stores common.h under the web root with ...)
-	TODO: check
+	NOT-FOR-US: Downloadcenter
 CVE-2009-0731 (Directory traversal vulnerability in pages/play.php in Free Arcade ...)
-	TODO: check
+	NOT-FOR-US: Free Arcade Script
 CVE-2009-0730 (Multiple SQL injection vulnerabilities in the GigCalendar (com_gigcal) ...)
-	TODO: check
+	NOT-FOR-US: GigCalendar
 CVE-2009-0729 (Multiple directory traversal vulnerabilities in Page Engine CMS 2.0 ...)
-	TODO: check
+	NOT-FOR-US: Page Engine CMS
 CVE-2009-0728 (SQL injection vulnerability in the My_eGallery module for MAXdev MDPro ...)
-	TODO: check
+	NOT-FOR-US: MAXdev MDPro/Postnuke
 CVE-2009-0727 (SQL injection vulnerability in jobdetails.php in taifajobs 1.0 and ...)
-	TODO: check
+	NOT-FOR-US: taifajobs
 CVE-2009-0726 (SQL injection vulnerability in the GigCalendar (com_gigcal) component ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2009-0725
 	RESERVED
 CVE-2009-0724
@@ -44,7 +44,7 @@
 CVE-2009-0723
 	RESERVED
 CVE-2009-0722 (Directory traversal vulnerability in admin.php in Potato News 1.0.0 ...)
-	TODO: check
+	NOT-FOR-US: Potato News
 CVE-2009-0721
 	RESERVED
 CVE-2009-0720
@@ -66,31 +66,31 @@
 CVE-2009-0712
 	RESERVED
 CVE-2009-0711 (filter.php in PHPFootball 1.6 and earlier allows remote attackers to ...)
-	TODO: check
+	NOT-FOR-US: PHPFootball
 CVE-2009-0710 (Multiple cross-site scripting (XSS) vulnerabilities in PHPFootball 1.6 ...)
-	TODO: check
+	NOT-FOR-US: PHPFootball
 CVE-2009-0709 (SQL injection vulnerability in login.php in PHPFootball 1.6 allows ...)
-	TODO: check
+	NOT-FOR-US: PHPFootball
 CVE-2009-0708 (Multiple cross-site request forgery (CSRF) vulnerabilities in ...)
-	TODO: check
+	NOT-FOR-US: SemanticScuttle
 CVE-2009-0707 (SQL injection vulnerability in admin/index.php in PowerClan 1.14a ...)
-	TODO: check
+	NOT-FOR-US: PowerClan
 CVE-2009-0706 (SQL injection vulnerability in the Simple Review (com_simple_review) ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2009-0705 (SQL injection vulnerability in news.php in PowerScripts PowerNews ...)
-	TODO: check
+	NOT-FOR-US: PowerScripts PowerNews
 CVE-2009-0704 (SQL injection vulnerability in search.php in WSN Guest 1.23 allows ...)
-	TODO: check
+	NOT-FOR-US: WSN Guest
 CVE-2009-0703 (SQL injection vulnerability in bview.asp in ASPThai.Net Webboard 6.0 ...)
-	TODO: check
+	NOT-FOR-US: ASPThai.Net Webboard
 CVE-2009-0702 (SQL injection vulnerability in the Phoca Documentation ...)
-	TODO: check
+	NOT-FOR-US: Joomla
 CVE-2009-0701 (Multiple PHP remote file inclusion vulnerabilities in index.php in ...)
-	TODO: check
+	NOT-FOR-US: Cybershade
 CVE-2009-0700 (Plunet BusinessManager 4.1 and earlier allows remote authenticated ...)
-	TODO: check
+	NOT-FOR-US: Plunet BusinessManager
 CVE-2009-0699 (Cross-site scripting (XSS) vulnerability in ...)
-	TODO: check
+	NOT-FOR-US: Plunet BusinessManager
 CVE-2009-0698 (Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib ...)
 	TODO: check
 CVE-2009-0697

More information about the Secure-testing-commits mailing list