white at alioth.debian.org
2008-Jul-28 14:26 UTC
[Secure-testing-commits] r9443 - data/CVE
Author: white Date: 2008-07-28 14:25:59 +0000 (Mon, 28 Jul 2008) New Revision: 9443 Modified: data/CVE/list Log: More NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-07-28 14:14:16 UTC (rev 9442) +++ data/CVE/list 2008-07-28 14:25:59 UTC (rev 9443) @@ -45,55 +45,55 @@ CVE-2008-3312 (Directory traversal vulnerability in ...) TODO: check CVE-2008-3311 (PHP remote file inclusion vulnerability in config.php in Adam ...) - TODO: check + NOT-FOR-US: Adam Scheinberg Flip CVE-2008-3310 (SQL injection vulnerability in default.asp in Pre Survey Poll allows ...) - TODO: check + NOT-FOR-US: Pre Survey Poll CVE-2008-3309 (SQL injection vulnerability in info_book.asp in DigiLeave 1.2 and ...) - TODO: check + NOT-FOR-US: DigiLeave CVE-2008-3308 (PHP remote file inclusion vulnerability in cuenta/cuerpo.php in C. ...) - TODO: check + NOT-FOR-US: C. Desseno YouTube Blog CVE-2008-3307 (SQL injection vulnerability in todos.php in C. Desseno YouTube Blog ...) - TODO: check + NOT-FOR-US: C. Desseno YouTube Blog CVE-2008-3306 (SQL injection vulnerability in info.php in C. Desseno YouTube Blog ...) - TODO: check + NOT-FOR-US: C. Desseno YouTube Blog CVE-2008-3305 (Cross-site scripting (XSS) vulnerability in mensaje.php in C. Desseno ...) - TODO: check + NOT-FOR-US: C. Desseno YouTube Blog CVE-2008-3304 (BilboBlog 0.2.1 allows remote attackers to obtain sensitive ...) - TODO: check + NOT-FOR-US: BilboBlog CVE-2008-3303 (admin/login.php in BilboBlog 0.2.1, when register_globals is enabled, ...) - TODO: check + NOT-FOR-US: BilboBlog CVE-2008-3302 (SQL injection vulnerability in admin/delete.php in BilboBlog 0.2.1, ...) - TODO: check + NOT-FOR-US: BilboBlog CVE-2008-3301 (Multiple cross-site scripting (XSS) vulnerabilities in BilboBlog 0.2.1 ...) - TODO: check + NOT-FOR-US: BilboBlog CVE-2008-3300 (AlphAdmin CMS 1.0.5/03 allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: AlphAdmin CMS CVE-2008-3299 (eSyndiCat 1.6 allows remote attackers to bypass authentication and ...) - TODO: check + NOT-FOR-US: eSyndiCat CVE-2008-3298 (SocialEngine (SE) before 2.83 grants certain write privileges for ...) - TODO: check + NOT-FOR-US: SocialEngine CVE-2008-3297 (Multiple SQL injection vulnerabilities in SocialEngine (SE) before ...) - TODO: check + NOT-FOR-US: SocialEngine CVE-2008-3296 (Directory traversal vulnerability in modules/system/admin.php in XOOPS ...) - TODO: check + NOT-FOR-US: XOOPS CVE-2008-3295 (Cross-site scripting (XSS) vulnerability in modules/system/admin.php ...) - TODO: check + NOT-FOR-US: XOOPS CVE-2008-3294 (src/configure.in in Vim 5.0 through 7.1, when used for a build with ...) TODO: check CVE-2008-3293 (Directory traversal vulnerability in download.php in EZWebAlbum allows ...) - TODO: check + NOT-FOR-US: EZWebAlbum CVE-2008-3292 (constants.inc in EZWebAlbum 1.0 allows remote attackers to bypass ...) - TODO: check + NOT-FOR-US: EZWebAlbum CVE-2008-3291 (SQL injection vulnerability in index.php in AproxEngine (aka Aprox CMS ...) - TODO: check + NOT-FOR-US: AproxEngine CVE-2008-3290 (retroclient.exe in EMC Dantz Retrospect Backup Client 7.5.116 allows ...) - TODO: check + NOT-FOR-US: EMC Dantz Retrospect Backup Client CVE-2008-3289 (EMC Dantz Retrospect Backup Client 7.5.116 sends the password hash in ...) - TODO: check + NOT-FOR-US: EMC Dantz Retrospect Backup Client CVE-2008-3288 (The Server Authentication Module in EMC Dantz Retrospect Backup Server ...) - TODO: check + NOT-FOR-US: EMC Dantz Retrospect Backup Server CVE-2008-3287 (retroclient.exe in EMC Dantz Retrospect Backup Client 7.5.116 allows ...) - TODO: check + NOT-FOR-US: EMC Dantz Retrospect Backup Client CVE-2008-3286 (SWAT 4 1.1 and earlier allows remote attackers to cause a denial of ...) TODO: check CVE-2008-3285 (The Filesys::SmbClientParser module 2.7 and earlier for Perl allows ...)