[Secure-testing-commits] r15040 - data/CVE

Pedro Ribeiro pedrib-guest at alioth.debian.org
Wed Jul 28 01:30:20 UTC 2010 

Author: pedrib-guest
Date: 2010-07-28 01:30:20 +0000 (Wed, 28 Jul 2010)
New Revision: 15040

Modified:
   data/CVE/list
Log:
plus more NFUs


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2010-07-28 00:59:13 UTC (rev 15039)
+++ data/CVE/list	2010-07-28 01:30:20 UTC (rev 15040)
@@ -153,29 +153,29 @@
 CVE-2010-2783
 	RESERVED
 CVE-2009-4957 (Directory traversal vulnerability in loadpanel.php in Interspire ...)
-	TODO: check
+	NOT-FOR-US: Interspire ActiveKB
 CVE-2009-4956 (Cross-site scripting (XSS) vulnerability in the Visitor Tracking ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (ws_stats)
 CVE-2009-4955 (SQL injection vulnerability in the ultraCards (th_ultracards) ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (th_ultracards)
 CVE-2009-4954 (SQL injection vulnerability in the Versatile Calendar Extension [VCE] ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (sk_calendar)
 CVE-2009-4953 (Cross-site scripting (XSS) vulnerability in the Userdata Create/Edit ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (sg_userdata) 
 CVE-2009-4952 (Directory traversal vulnerability in the Directory Listing ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (dir_listing)
 CVE-2009-4951 (Unspecified vulnerability in the ClickStream Analyzer [output] ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (alternet_csa_out)
 CVE-2009-4950 (SQL injection vulnerability in the A21glossary Advanced Output ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (a21glossary_advanced_output)
 CVE-2009-4949 (SQL injection vulnerability in the Store Locator extension before ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (locator)
 CVE-2009-4948 (Cross-site scripting (XSS) vulnerability in the Store Locator ...)
-	TODO: check
+	NOT-FOR-US: typo3 third party component (locator)
 CVE-2009-4947 (SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 ...)
-	TODO: check
+	NOT-FOR-US: Q2 Solutions ConnX
 CVE-2009-4946 (Directory traversal vulnerability in the Messaging (com_messaging) ...)
-	TODO: check
+	NOT-FOR-US: Joomla! Messaging
 CVE-2010-2782
 	RESERVED
 CVE-2010-2781

More information about the Secure-testing-commits mailing list