[Secure-testing-commits] r14490 - data/CVE

Florian Weimer fw at alioth.debian.org
Thu Apr 15 11:01:19 UTC 2010 

Author: fw
Date: 2010-04-15 11:01:15 +0000 (Thu, 15 Apr 2010)
New Revision: 14490

Modified:
   data/CVE/list
Log:
NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-04-15 07:16:32 UTC (rev 14489)
+++ data/CVE/list	2010-04-15 11:01:15 UTC (rev 14490)
@@ -1,6 +1,5 @@
 CVE-2010-1564
 	REJECTED
-	TODO: check
 CVE-2010-1372 (SQL injection vulnerability in the HD FLV Player (com_hdflvplayer) ...)
 	NOT-FOR-US: Joomla!
 CVE-2010-1371 (Cross-site scripting (XSS) vulnerability in signup.asp in Pre ...)
@@ -12,7 +11,6 @@
 CVE-2010-1368 (SQL injection vulnerability in index.php in GameScript (GS) 3.0 allows ...)
 	NOT-FOR-US: GameScript
 CVE-2010-1367 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
-	TODO: check
 	NOT-FOR-US: Uiga Fan Club
 CVE-2010-1366 (Multiple SQL injection vulnerabilities in admin/admin_login.php in ...)
 	NOT-FOR-US: Uiga Fan Club
@@ -29,19 +27,19 @@
 CVE-2010-1360 (Multiple PHP remote file inclusion vulnerabilities in FAQEngine ...)
 	NOT-FOR-US: FAQEngine
 CVE-2010-1359 (SQL injection vulnerability in bluegate_seo.inc.php in the Direct URL ...)
-	TODO: check
+	NOT-FOR-US: xt:Commerce
 CVE-2010-1358 (Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) ...)
-	TODO: check
+	NOT-FOR-US: Biblio module for Drupal
 CVE-2010-1357 (Cross-site scripting (XSS) vulnerability in editors/logindialogue.php ...)
-	TODO: check
+	NOT-FOR-US: SBD Directory Software
 CVE-2010-1356 (Unspecified vulnerability on the TANDBERG Video Communication Server ...)
-	TODO: check
+	NOT-FOR-US: TANDBERG Video Communication Server
 CVE-2010-1355 (Cross-site scripting (XSS) vulnerability on the TANDBERG Video ...)
-	TODO: check
+	NOT-FOR-US: TANDBERG Video Communication Server
 CVE-2009-4766 (YP Portal MS-Pro Surumu (aka MS-Pro Portal Scripti) 1.0 and 1.2 stores ...)
-	TODO: check
+	NOT-FOR-US: MS-Pro Portal Scripti
 CVE-2009-4765 (CNR Hikaye Portal 2.0 stores sensitive information under the web root ...)
-	TODO: check
+	NOT-FOR-US: CNR Hikaye Portal
 CVE-2010-1354 (Directory traversal vulnerability in the VJDEO (com_vjdeo) component ...)
 	NOT-FOR-US: Joomla!
 CVE-2010-1353 (Directory traversal vulnerability in the LoginBox Pro (com_loginbox) ...)

More information about the Secure-testing-commits mailing list