[Secure-testing-commits] r17440 - data/CVE
Federico Ceratto
federico-guest at alioth.debian.org
Sun Oct 16 21:50:03 UTC 2011
Author: federico-guest
Date: 2011-10-16 21:50:03 +0000 (Sun, 16 Oct 2011)
New Revision: 17440
Modified:
data/CVE/list
Log:
NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-10-16 19:58:56 UTC (rev 17439)
+++ data/CVE/list 2011-10-16 21:50:03 UTC (rev 17440)
@@ -166,11 +166,11 @@
CVE-2010-4924 (** DISPUTED ** PHP remote file inclusion vulnerability in ...)
NOT-FOR-US: clearBudget
CVE-2010-4923 (SQL injection vulnerability in book/detail.php in Virtue Netz Virtue ...)
- TODO: check
+ NOT-FOR-US: Virtue Netz Virtue
CVE-2010-4922 (Multiple SQL injection vulnerabilities in Allinta CMS 22.07.2010 allow ...)
- TODO: check
+ NOT-FOR-US: Allinta CMS
CVE-2010-4921 (SQL injection vulnerability in inc_pollingboothmanager.asp in DMXReady ...)
- TODO: check
+ NOT-FOR-US: DMXReady Polling Booth Manager
CVE-2010-4920 (SQL injection vulnerability in detail.asp in Micronetsoft Rental ...)
NOT-FOR-US: Micronetsoft
CVE-2010-4919 (SQL injection vulnerability in detail.asp in Micronetsoft RV Dealer ...)
@@ -184,25 +184,25 @@
CVE-2010-4915 (SQL injection vulnerability in index.cfm in ColdGen ColdBookmarks 1.22 ...)
NOT-FOR-US: ColdGen ColdBookmarks
CVE-2010-4914 (PHP remote file inclusion vulnerability in ...)
- TODO: check
+ NOT-FOR-US: PHP Classifieds
CVE-2010-4913 (Cross-site scripting (XSS) vulnerability in the search feature in ...)
NOT-FOR-US: ColdGen ColdUserGroup
CVE-2010-4912 (SQL injection vulnerability in shop.php in UCenter Home 2.0 allows ...)
NOT-FOR-US: UCenter
CVE-2010-4911 (SQL injection vulnerability in classi/detail.php in PHP Classifieds ...)
- TODO: check
+ NOT-FOR-US: PHP Classifieds
CVE-2010-4910 (SQL injection vulnerability in index.cfm in ColdGen ColdCalendar 2.06 ...)
- TODO: check
+ NOT-FOR-US: ColdGen ColdCalendar
CVE-2010-4909 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: PaysiteReviewCMS
CVE-2010-4908 (SQL injection vulnerability in detail.php in Virtue Shopping Mall ...)
- TODO: check
+ NOT-FOR-US: Virtue Shopping Mall
CVE-2010-4907 (Cross-site scripting (XSS) vulnerability in zp-core/admin.php in ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2010-4906 (SQL injection vulnerability in zp-core/full-image.php in Zenphoto 1.3 ...)
- TODO: check
+ NOT-FOR-US: Zenphoto
CVE-2010-4905 (SQL injection vulnerability in article_details.php in Softbiz Article ...)
- TODO: check
+ NOT-FOR-US: Softbiz
CVE-2010-4904 (SQL injection vulnerability in the Aardvertiser (com_aardvertiser) ...)
TODO: check
CVE-2010-4903 (SQL injection vulnerability in index.php in CubeCart 4.3.3 allows ...)
@@ -210,9 +210,9 @@
CVE-2010-4902 (Multiple SQL injection vulnerabilities in the Clantools ...)
TODO: check
CVE-2010-4901 (Multiple cross-site scripting (XSS) vulnerabilities in char_map.php in ...)
- TODO: check
+ NOT-FOR-US: MySource Matrix
CVE-2010-4900 (Open redirect vulnerability in c.php in CMS WebManager-Pro 8.1 and ...)
- TODO: check
+ NOT-FOR-US: CMS WebManager-Pro
CVE-2010-4899 (SQL injection vulnerability in c.php in CMS WebManager-Pro before 8.1 ...)
TODO: check
CVE-2010-4898 (SQL injection vulnerability in the Gantry (com_gantry) component ...)
@@ -10163,7 +10163,7 @@
CVE-2011-0460
RESERVED
CVE-2011-0459 (Cross-site scripting (XSS) vulnerability in Cyber-Ark Password Vault ...)
- TODO: check
+ NOT-FOR-US: Cyber-Ark
CVE-2011-0458 (Untrusted search path vulnerability in the Locate on Disk feature in ...)
NOT-FOR-US: Google Picasa
CVE-2011-0457 (Cross-site scripting (XSS) vulnerability in e107 0.7.22 and earlier ...)
@@ -10472,7 +10472,7 @@
CVE-2011-0334 (Stack-based buffer overflow in gwia.exe in GroupWise Internet Agent ...)
TODO: check
CVE-2011-0333 (Heap-based buffer overflow in the NgwiCalVTimeZoneBody::ParseSelf ...)
- TODO: check
+ NOT-FOR-US: Novell GroupWise
CVE-2011-0332 (Integer overflow in Foxit Reader before 4.3.1.0218 and Foxit Phantom ...)
NOT-FOR-US: Foxit Reader
CVE-2011-0331 (Use-after-free vulnerability in the addOSPLext method in the Honeywell ...)
More information about the Secure-testing-commits
mailing list