[Secure-testing-commits] r30529 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Dec 4 08:47:10 UTC 2014
Author: carnil
Date: 2014-12-04 08:40:29 +0000 (Thu, 04 Dec 2014)
New Revision: 30529
Modified:
data/CVE/list
Log:
Mark some wordpress plugins as NFU
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-12-04 07:58:53 UTC (rev 30528)
+++ data/CVE/list 2014-12-04 08:40:29 UTC (rev 30529)
@@ -266,9 +266,9 @@
CVE-2014-9101 (Multiple cross-site request forgery (CSRF) vulnerabilities in Oxwall 1.7.0 ...)
TODO: check
CVE-2014-9100 (Cross-site scripting (XSS) vulnerability in the WhyDoWork AdSense ...)
- TODO: check
+ NOT-FOR-US: WhyDoWork AdSense plugin for WordPress
CVE-2014-9099 (Cross-site request forgery (CSRF) vulnerability in the WhyDoWork ...)
- TODO: check
+ NOT-FOR-US: WhyDoWork AdSense plugin for WordPress
CVE-2014-9098 (Multiple cross-site scripting (XSS) vulnerabilities in the Apptha ...)
TODO: check
CVE-2014-9097 (Multiple SQL injection vulnerabilities in the Apptha WordPress Video ...)
@@ -278,7 +278,7 @@
CVE-2014-9095 (Multiple SQL injection vulnerabilities in Raritan Power IQ 4.1.0 and ...)
TODO: check
CVE-2014-9094 (Multiple cross-site scripting (XSS) vulnerabilities in ...)
- TODO: check
+ NOT-FOR-US: Digital Zoom Studio (DZS) Video Gallery plugin for WordPress
CVE-2014-9088
RESERVED
CVE-2014-9086
@@ -3043,7 +3043,7 @@
CVE-2014-8751
RESERVED
CVE-2014-8749 (Server-side request forgery (SSRF) vulnerability in ...)
- TODO: check
+ NOT-FOR-US: BulletProof Security plugin for WordPress
CVE-2014-8748 (Cross-site scripting (XSS) vulnerability in the Google Doubleclick for ...)
NOT-FOR-US: Drupal module Google Doubleclick for Publishers
CVE-2014-8747 (Cross-site scripting (XSS) vulnerability in the Drupal Commons module ...)
More information about the Secure-testing-commits
mailing list