[Secure-testing-commits] r20230 - data/CVE
Yves-Alexis Perez
corsac at alioth.debian.org
Tue Sep 25 20:40:24 UTC 2012
Author: corsac
Date: 2012-09-25 20:40:23 +0000 (Tue, 25 Sep 2012)
New Revision: 20230
Modified:
data/CVE/list
Log:
add a bunch of NFUs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-09-25 19:42:29 UTC (rev 20229)
+++ data/CVE/list 2012-09-25 20:40:23 UTC (rev 20230)
@@ -1,21 +1,21 @@
CVE-2012-5159 [phpmyadmin cdnetworks-kr-1 backdoored version]
- phpmyadmin <not-affected>
CVE-2012-5105 (Multiple cross-site scripting (XSS) vulnerabilities in SQLiteManager ...)
- TODO: check
+ NOT-FOR-US: SQLiteManager
CVE-2012-5104 (Cross-site scripting (XSS) vulnerability in forums/ubbthreads.php in ...)
- TODO: check
+ NOT-FOR-US: UBB.threads
CVE-2012-5103 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Ggb guestbook
CVE-2012-5102 (Cross-site scripting (XSS) vulnerability in inc/extensions.php in ...)
- TODO: check
+ NOT-FOR-US: VertigoServ
CVE-2012-5101 (SQL injection vulnerability in the JExtensions JE Poll component ...)
- TODO: check
+ NOT-FOR-US: Joomla! extension
CVE-2012-5100 (Directory traversal vulnerability in HServer 0.1.1 allows remote ...)
- TODO: check
+ NOT-FOR-US: HServer
CVE-2012-5099 (Cross-site scripting (XSS) vulnerability in list.php in PHPB2B 4.1 and ...)
- TODO: check
+ NOT-FOR-US: PHPB2B
CVE-2012-5098 (Multiple SQL injection vulnerabilities in Php-X-Links, possibly 1.0, ...)
- TODO: check
+ NOT-FOR-US: PHP-X-Links
CVE-2012-5097
RESERVED
CVE-2012-5096
@@ -197,19 +197,19 @@
CVE-2012-5008
RESERVED
CVE-2011-5201 (Multiple SQL injection vulnerabilities in sign.php in tinyguestbook ...)
- TODO: check
+ NOT-FOR-US: tinyguestbook
CVE-2011-5200 (Multiple SQL injection vulnerabilities in DeDeCMS, possibly 5.6, allow ...)
- TODO: check
+ NOT-FOR-US: DeDeCMS
CVE-2011-5199 (Cross-site scripting (XSS) vulnerability in sign.php in tinyguestbook ...)
- TODO: check
+ NOT-FOR-US: tinyguestbook
CVE-2011-5198 (SQL injection vulnerability in search.php in Neturf eCommerce Shopping ...)
- TODO: check
+ NOT-FOR-US: Neturf eCommerce Shopping Cart
CVE-2011-5197 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Public Knowledge Project Open Harvester Systems
CVE-2011-5196 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Public Knowledge Project Open Journal Systems
CVE-2011-5195 (Cross-site request forgery (CSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: Public Knowledge Project Open Conference Systems
CVE-2011-5194 (Cross-site scripting (XSS) vulnerability in ...)
TODO: check
CVE-2011-5193 (Cross-site scripting (XSS) vulnerability in ...)
@@ -5008,7 +5008,7 @@
CVE-2012-3138
RESERVED
CVE-2012-3137 (The authentication protocol in Oracle Database 11g 1 and 2 allows ...)
- TODO: check
+ NOT-FOR-US: Oracle Database
CVE-2012-3136 (Unspecified vulnerability in the Java Runtime Environment (JRE) ...)
- openjdk-7 7u3-2.1.2-1
- openjdk-6 <not-affected>
More information about the Secure-testing-commits
mailing list