[Secure-testing-commits] r19842 - data/CVE
Yves-Alexis Perez
corsac at alioth.debian.org
Tue Jul 31 19:01:25 UTC 2012
Author: corsac
Date: 2012-07-31 19:01:25 +0000 (Tue, 31 Jul 2012)
New Revision: 19842
Modified:
data/CVE/list
Log:
add CVE for fckeditor
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-07-31 18:59:06 UTC (rev 19841)
+++ data/CVE/list 2012-07-31 19:01:25 UTC (rev 19842)
@@ -161,7 +161,8 @@
CVE-2012-4001
RESERVED
CVE-2012-4000 (Cross-site scripting (XSS) vulnerability in the print_textinputs_var ...)
- TODO: check
+ - fckeditor <unfixed> (bug #683418)
+ NOTE: http://disse.cting.org/2012/06/22/fckeditor-reflected-xss-vulnerability/
CVE-2012-3999 (Cross-site scripting (XSS) vulnerability in admin/login.php in Sticky ...)
NOT-FOR-US: Sticky Notes
CVE-2012-3998 (Multiple SQL injection vulnerabilities in Sticky Notes before ...)
More information about the Secure-testing-commits
mailing list