[Secure-testing-commits] r18405 - data/CVE

[Joey Hess]

Author: joeyh
Date: 2012-02-08 21:14:22 +0000 (Wed, 08 Feb 2012)
New Revision: 18405

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-02-08 17:45:38 UTC (rev 18404)
+++ data/CVE/list	2012-02-08 21:14:22 UTC (rev 18405)
@@ -1,23 +1,77 @@
+CVE-2012-1034 (Multiple cross-site scripting (XSS) vulnerabilities in the admin ...)
+	TODO: check
+CVE-2012-1033
+	RESERVED
+CVE-2012-1032
+	RESERVED
+CVE-2012-1031 (Unspecified vulnerability in EPiServer CMS 5 and 6 through 6R2, in ...)
+	TODO: check
+CVE-2012-1030
+	RESERVED
+CVE-2012-1029 (SQL injection vulnerability in mobile/search/index.php in Tube Ace ...)
+	TODO: check
+CVE-2012-1028 (Cross-site scripting (XSS) vulnerability in bin/index.php in ...)
+	TODO: check
+CVE-2012-1027 (Cross-site scripting (XSS) vulnerability in account-closed.tcl in ...)
+	TODO: check
+CVE-2012-1026 (Multiple SQL injection vulnerabilities in login2.php in XRay CMS 1.1.1 ...)
+	TODO: check
+CVE-2012-1025 (Absolute path traversal vulnerability in file in Enigma2 Webinterface ...)
+	TODO: check
+CVE-2012-1024 (Directory traversal vulnerability in file in Enigma2 Webinterface ...)
+	TODO: check
+CVE-2012-1023 (Open redirect vulnerability in admin/index.php in 4images 1.7.10 ...)
+	TODO: check
+CVE-2012-1022 (SQL injection vulnerability in admin/categories.php in 4images 1.7.10 ...)
+	TODO: check
+CVE-2012-1021 (Cross-site scripting (XSS) vulnerability in admin/categories.php in ...)
+	TODO: check
+CVE-2012-1020 (Multiple cross-site scripting (XSS) vulnerabilities in login.php in ...)
+	TODO: check
+CVE-2012-1019 (Multiple cross-site scripting (XSS) vulnerabilities in XWiki ...)
+	TODO: check
+CVE-2012-1018 (Cross-site scripting (XSS) vulnerability in includes/convert.php in ...)
+	TODO: check
+CVE-2012-1017 (Multiple SQL injection vulnerabilities in base_qry_main.php in Basic ...)
+	TODO: check
+CVE-2012-1016
+	RESERVED
+CVE-2012-1015
+	RESERVED
+CVE-2012-1014
+	RESERVED
+CVE-2012-1013
+	RESERVED
+CVE-2012-1012
+	RESERVED
+CVE-2012-1011 (actions.php in the AllWebMenus plugin 1.1.8 for WordPress allows ...)
+	TODO: check
+CVE-2012-1010 (Unrestricted file upload vulnerability in actions.php in the ...)
+	TODO: check
+CVE-2011-5077 (Unrestricted file upload vulnerability in attachement.php in HDWiki ...)
+	TODO: check
+CVE-2011-5076 (SQL injection vulnerability in model/comment.class.php in HDWiki 5.0, ...)
+	TODO: check
 CVE-2012-1009
 	RESERVED
-CVE-2012-1008
-	RESERVED
+CVE-2012-1008 (OfficeSIP Server 3.1 allows remote attackers to cause a denial of ...)
+	TODO: check
 CVE-2012-1007 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts ...)
 	TODO: check
 CVE-2012-1006 (Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts ...)
 	TODO: check
-CVE-2012-1005
-	RESERVED
-CVE-2012-1004
-	RESERVED
+CVE-2012-1005 (Multiple cross-site scripting (XSS) vulnerabilities in Sphinx Software ...)
+	TODO: check
+CVE-2012-1004 (Multiple cross-site scripting (XSS) vulnerabilities in UI/Register.pm ...)
+	TODO: check
 CVE-2010-XXXX [pam_shield default configuration does not take any action]
 	- pam-shield <unfixed> (medium; bug #658830)
 CVE-2012-1003 (Multiple integer overflows in Opera 11.60 and earlier allow remote ...)
 	TODO: check
 CVE-2002-2483
 	- linux-2.6 2.4.20
-CVE-2012-1002
-	RESERVED
+CVE-2012-1002 (Unspecified vulnerability in OpenConf 4.x before 4.12 has unknown ...)
+	TODO: check
 CVE-2012-1001
 	RESERVED
 CVE-2012-1000
@@ -36,12 +90,12 @@
 	RESERVED
 CVE-2012-0993
 	RESERVED
-CVE-2012-0992
-	RESERVED
-CVE-2012-0991
-	RESERVED
-CVE-2012-0990
-	RESERVED
+CVE-2012-0992 (interface/fax/fax_dispatch.php in OpenEMR 4.1.0 allows remote ...)
+	TODO: check
+CVE-2012-0991 (Multiple directory traversal vulnerabilities in OpenEMR 4.1.0 allow ...)
+	TODO: check
+CVE-2012-0990 (Cross-site request forgery (CSRF) vulnerability in ...)
+	TODO: check
 CVE-2012-0989
 	RESERVED
 CVE-2012-0988