[Secure-testing-commits] r57096 - data/CVE

Sun Oct 29 09:10:20 UTC 2017

Author: sectracker
Date: 2017-10-29 09:10:20 +0000 (Sun, 29 Oct 2017)
New Revision: 57096

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-10-28 22:30:55 UTC (rev 57095)
+++ data/CVE/list	2017-10-29 09:10:20 UTC (rev 57096)
@@ -1,3 +1,87 @@
+CVE-2017-15994 (rsync 3.1.3-development before 2017-10-24, as used in the xlucas svfs ...)
+	TODO: check
+CVE-2017-15993
+	RESERVED
+CVE-2017-15992
+	RESERVED
+CVE-2017-15991
+	RESERVED
+CVE-2017-15990
+	RESERVED
+CVE-2017-15989
+	RESERVED
+CVE-2017-15988
+	RESERVED
+CVE-2017-15987
+	RESERVED
+CVE-2017-15986
+	RESERVED
+CVE-2017-15985
+	RESERVED
+CVE-2017-15984
+	RESERVED
+CVE-2017-15983
+	RESERVED
+CVE-2017-15982
+	RESERVED
+CVE-2017-15981
+	RESERVED
+CVE-2017-15980
+	RESERVED
+CVE-2017-15979
+	RESERVED
+CVE-2017-15978
+	RESERVED
+CVE-2017-15977
+	RESERVED
+CVE-2017-15976 (ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid ...)
+	TODO: check
+CVE-2017-15975 (Vastal I-Tech Dating Zone 0.9.9 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15974 (tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 ...)
+	TODO: check
+CVE-2017-15973 (Sokial Social Network Script 1.0 allows SQL Injection via the id ...)
+	TODO: check
+CVE-2017-15972 (SoftDatepro Dating Social Network 1.3 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15971 (Same Sex Dating Software Pro 1.0 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15970 (PHP CityPortal 2.0 allows SQL Injection via the nid parameter to ...)
+	TODO: check
+CVE-2017-15969 (PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to ...)
+	TODO: check
+CVE-2017-15968 (MyBuilder Clone 1.0 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15967 (Mailing List Manager Pro 3.0 allows SQL Injection via the edit ...)
+	TODO: check
+CVE-2017-15966 (The Zh YandexMap (aka com_zhyandexmap) component 6.1.1.0 for Joomla! ...)
+	TODO: check
+CVE-2017-15965 (The NS Download Shop (aka com_ns_downloadshop) component 2.2.6 for ...)
+	TODO: check
+CVE-2017-15964 (Job Board Script Software allows SQL Injection via the PATH_INFO to a ...)
+	TODO: check
+CVE-2017-15963 (iTech Gigs Script 1.21 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15962 (iStock Management System 1.0 allows Arbitrary File Upload via ...)
+	TODO: check
+CVE-2017-15961 (iProject Management System 1.0 allows SQL Injection via the ID ...)
+	TODO: check
+CVE-2017-15960 (Article Directory Script 3.0 allows SQL Injection via the id parameter ...)
+	TODO: check
+CVE-2017-15959 (Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a ...)
+	TODO: check
+CVE-2017-15958 (D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the ...)
+	TODO: check
+CVE-2017-15957 (my_profile.php in Ingenious School Management System 2.3.0 allows a ...)
+	TODO: check
+CVE-2017-15956 (ConverTo Video Downloader & Converter 1.4.1 allows Arbitrary File ...)
+	TODO: check
+CVE-2017-15955 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an ...)
+	TODO: check
+CVE-2017-15954 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a ...)
+	TODO: check
+CVE-2017-15953 (bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a ...)
+	TODO: check
 CVE-2017-15952
 	RESERVED
 CVE-2017-15951 (The KEYS subsystem in the Linux kernel before 4.13.10 does not ...)
@@ -243652,8 +243736,8 @@
 	NOT-FOR-US: Oracle
 CVE-2006-5332 (Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for ...)
 	NOT-FOR-US: Oracle
-CVE-2006-5331
-	RESERVED
+CVE-2006-5331 (The altivec_unavailable_exception function in ...)
+	TODO: check
 CVE-2006-5330 (CRLF injection vulnerability in Adobe Flash Player plugin 9.0.16 and ...)
 	- flashplugin-nonfree 9.0.31.0.1 (bug #402822; medium)
 	NOTE: It is not clear if this is already fix in 9.0.21.78.X (previous version)


