white at alioth.debian.org
2008-Aug-22 08:17 UTC
[Secure-testing-commits] r9621 - data/CVE
Author: white Date: 2008-08-22 08:17:28 +0000 (Fri, 22 Aug 2008) New Revision: 9621 Modified: data/CVE/list Log: More NFUs Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-08-22 07:46:30 UTC (rev 9620) +++ data/CVE/list 2008-08-22 08:17:28 UTC (rev 9621) @@ -56,33 +56,33 @@ CVE-2008-3714 (Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 ...) TODO: check CVE-2008-3713 (SQL injection vulnerability in product.php in PHPBasket allows remote ...) - TODO: check + NOT-FOR-US: PHPBasket CVE-2008-3712 (Multiple cross-site scripting (XSS) vulnerabilities in Mambo 4.6.2 and ...) - TODO: check + NOT-FOR-US: Mambo CVE-2008-3711 (SQL injection vulnerability in index.php in PHPArcadeScript (PHP ...) - TODO: check + NOT-FOR-US: PHPArcadeScript CVE-2008-3710 (Multiple directory traversal vulnerabilities in CyBoards PHP Lite 1.21 ...) - TODO: check + NOT-FOR-US: CyBoards PHP Lite CVE-2008-3709 (Multiple cross-site scripting (XSS) vulnerabilities in CyBoards PHP ...) - TODO: check + NOT-FOR-US: CyBoards PHP Lite CVE-2008-3708 (Multiple directory traversal vulnerabilities in dotCMS 1.6.0.9 allow ...) - TODO: check + NOT-FOR-US: dotCMS CVE-2008-3707 (Multiple PHP remote file inclusion vulnerabilities in CyBoards PHP ...) - TODO: check + NOT-FOR-US: CyBoards PHP Lite CVE-2008-3706 (SQL injection vulnerability in bannerclick.php in ZEEJOBSITE 2.0 ...) - TODO: check + NOT-FOR-US: ZEEJOBSITE CVE-2008-3705 (Stack-based buffer overflow in the CLogger::WriteFormated function in ...) - TODO: check + NOT-FOR-US: EchoVNC Linux CVE-2008-3704 (Stack-based buffer overflow in the MaskedEdit ActiveX control in ...) - TODO: check + NOT-FOR-US: Msmask32.ocx CVE-2008-3703 (The management console in the Volume Manager Scheduler Service (aka ...) - TODO: check + NOT-FOR-US: Symantec Veritas Storage Foundation CVE-2008-3702 (Multiple stack-based buffer overflows in the Animation GIF ActiveX ...) - TODO: check + NOT-FOR-US: SpeedBit Download Accelerator Plus CVE-2008-3701 (SQL injection vulnerability in staff/index.php in Kayako SupportSuite ...) - TODO: check + NOT-FOR-US: Kayako SupportSuite CVE-2008-3700 (Multiple cross-site scripting (XSS) vulnerabilities in Kayako ...) - TODO: check + NOT-FOR-US: Kayako SupportSuite CVE-2008-3698 RESERVED CVE-2008-3697 @@ -116,45 +116,45 @@ CVE-2008-3683 (Unspecified vulnerability in the FTP subsystem in Sun Java System Web ...) TODO: check CVE-2008-3682 (SQL injection vulnerability in dpage.php in YPN PHP Realty allows ...) - TODO: check + NOT-FOR-US: YPN PHP Realty CVE-2008-3681 (components/com_user/models/reset.php in Joomla! 1.5 through 1.5.5 does ...) TODO: check CVE-2008-3680 (The decryption function in Flagship Industries Ventrilo 3.0.2 and ...) - TODO: check + NOT-FOR-US: Flagship Industries Ventrilo CVE-2008-3679 (Multiple cross-site scripting (XSS) vulnerabilities in index.php in ...) - TODO: check + NOT-FOR-US: IDevSpot PhpLinkExchange CVE-2008-3678 (Cross-site scripting (XSS) vulnerability in admin/search_links.php in ...) - TODO: check + NOT-FOR-US: Freeway CVE-2008-3677 (Directory traversal vulnerability in ...) - TODO: check + NOT-FOR-US: Freeway CVE-2008-3676 (Unspecified vulnerability in the IMAP server in hMailServer 4.4.1 ...) - TODO: check + NOT-FOR-US: hMailServer CVE-2008-3675 (Directory traversal vulnerability in classes/imgsize.php in Gelato ...) - TODO: check + NOT-FOR-US: Gelato CVE-2008-3674 (SQL injection vulnerability in ugroups.php in PozScripts TubeGuru ...) - TODO: check + NOT-FOR-US: PozScripts TubeGuru Video Sharing Script CVE-2008-3673 (SQL injection vulnerability in browsecats.php in PozScripts Classified ...) - TODO: check + NOT-FOR-US: PozScripts Classified Ads CVE-2008-3672 (SQL injection vulnerability in showcategory.php in PozScripts ...) - TODO: check + NOT-FOR-US: PozScripts Classified Ads CVE-2008-3671 (Acronis True Image Echo Server 9.x build 8072 on Linux does not ...) - TODO: check + NOT-FOR-US: Echo Server CVE-2008-3670 (SQL injection vulnerability in authordetail.php in Article Friendly ...) - TODO: check + NOT-FOR-US: Article Friendly Pro CVE-2008-3669 (SQL injection vulnerability in comments.php in ZeeScripts Reviews ...) - TODO: check + NOT-FOR-US: ZeeScripts Reviews Opinions Rating Posting Engine Web-Site PHP CVE-2008-3668 (Multiple cross-site scripting (XSS) vulnerabilities in the Yogurt ...) - TODO: check + NOT-FOR-US: XOOPS CVE-2008-3667 (Stack-based buffer overflow in Maxthon Browser 2.0 and earlier allows ...) - TODO: check + NOT-FOR-US: Maxthon Browser CVE-2006-7233 (Cross-site scripting (XSS) vulnerability in the login form (login.jsp) ...) - TODO: check + NOT-FOR-US: Openfire CVE-2005-4877 (Cross-site scripting (XSS) vulnerability in the login form (login.jsp) ...) - TODO: check + NOT-FOR-US: Openfire CVE-2005-4876 (Cross-site scripting (XSS) vulnerability in the login form (login.jsp) ...) - TODO: check + NOT-FOR-US: Openfire CVE-2003-1563 (Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real ...) - TODO: check + NOT-FOR-US: Oracle CVE-2008-3699 (The MagnatuneBrowser::listDownloadComplete function in ...) - amarok 1.4.10-1 (low; bug #494765) CVE-2008-3740 [drupal XSS]