[Secure-testing-commits] r22251 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Tue May 14 06:47:04 UTC 2013
Author: carnil
Date: 2013-05-14 06:47:04 +0000 (Tue, 14 May 2013)
New Revision: 22251
Modified:
data/CVE/list
Log:
CVE-2013-3525 updated, as per upstream blog and also confirmed with request-tracker maintainers
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-05-14 06:35:24 UTC (rev 22250)
+++ data/CVE/list 2013-05-14 06:47:04 UTC (rev 22251)
@@ -15,9 +15,7 @@
CVE-2013-3526 (Cross-site scripting (XSS) vulnerability in js/ta_loaded.js.php in the ...)
NOT-FOR-US: WordPress plugin
CVE-2013-3525 (SQL injection vulnerability in Approvals/ in Request Tracker (RT) ...)
- - request-tracker3.8 <removed>
- - request-tracker4 <unfixed>
- TODO: check and report bug
+ NOTE: http://blog.bestpractical.com/2013/04/on-our-security-policies.html
CVE-2013-3524 (SQL injection vulnerability in popupnewsitem/ in the Pop Up News ...)
NOT-FOR-US: phpVMS
CVE-2013-3523 (SQL injection vulnerability in This HTML Is Simple (THIS) before 1.2.4 ...)
More information about the Secure-testing-commits
mailing list